cd7496af4445a264385b6f8cce87b3d0N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd7496af4445a264385b6f8cce87b3d0N.exe
Size

256KB
MD5

cd7496af4445a264385b6f8cce87b3d0
SHA1

a8b2fb2f35233a6bc9c447f4ba5d54c7d3c4ff73
SHA256

c916817f4a0e429a6c18d48c351cd7c8188c939a51245b3d6d34d15089be4c83
SHA512

57ed43171278317b68a5884966f8c9801e68f89c910f31c82e2984ec7d30f7f61c64634155a243f043ebd3f0d2736d7838f882efe0e9f21a1f3a8c85eb878ea8
SSDEEP

6144:3y+WKhOJpXMG/XMG0OU2YMOInvKhOKPW:3y+WKhOvXt/Xt5pX1vKhOKPW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd7496af4445a264385b6f8cce87b3d0N.exe

Files

cd7496af4445a264385b6f8cce87b3d0N.exe
.exe windows:4 windows x86 arch:x86

66008b27b385553e45b2d31ed6cc1dac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
__vbaStrI4
__vbaFreeVar
__vbaLateIdCall
__vbaFreeVarList
_adj_fdiv_m64
__vbaFreeObjList
_adj_fprem1
__vbaStrCat
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaExitProc
ord593
__vbaObjSet
ord595
__vbaOnError
_adj_fdiv_m16i
_adj_fdivr_m16i
_CIsin
__vbaChkstk
EVENT_SINK_AddRef
__vbaStrCmp
__vbaVarTstEq
DllFunctionCall
_adj_fpatan
__vbaLateIdCallLd
EVENT_SINK_Release
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
__vbaFPException
__vbaI2Var
_CIlog
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaI4Str
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord100
__vbaVarDup
__vbaFpI4
_CIatan
__vbaStrMove
_allmul
__vbaLateIdSt
_CItan
_CIexp
__vbaFreeStr
__vbaFreeObj
ord581

Sections

.text
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ