38954d3289d6f6cf579f85ec2a57159bd8b2dff332a27c62b17e4ebca6791e5a | Triage

Sharing

General

Target

38954d3289d6f6cf579f85ec2a57159bd8b2dff332a27c62b17e4ebca6791e5a
Size

44KB
MD5

cbdaef3f14fb610986e11c164f7da435
SHA1

6f265021fffeaf541a05fc67f5196ac1911d73e0
SHA256

38954d3289d6f6cf579f85ec2a57159bd8b2dff332a27c62b17e4ebca6791e5a
SHA512

7e354be87505d4bf6611a138af3032b0307e10c367b000025441998d4e187352925cb94c004df7ba52d18c038777011a2dcecdf7aac5ae6a8e5cf97ba30cf5de
SSDEEP

384:h2FWpmgwRw3aF3XhLrO/uqfPogz7u3dGm23jXHXmxvOJ9royZBEe:oFQUR7F3Xhn6T3ogv3jXHXmxvOJyUBE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38954d3289d6f6cf579f85ec2a57159bd8b2dff332a27c62b17e4ebca6791e5a

Files

38954d3289d6f6cf579f85ec2a57159bd8b2dff332a27c62b17e4ebca6791e5a
.exe windows:4 windows x86 arch:x86

b72b48ceb889d9607ee172e2e4d37169

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord660
ord661
ord300
ord302
ord303
ord304
ord306
ord308
ord309
ord632
EVENT_SINK_AddRef
ord560
DllFunctionCall
EVENT_SINK_Release
ord310
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord312
ord716
ord100
ord546

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ