11ec2118e334488e2ec17e00fc719f70N | Triage

Sharing

General

Target

11ec2118e334488e2ec17e00fc719f70N
Size

92KB
MD5

11ec2118e334488e2ec17e00fc719f70
SHA1

ea277e80670c5f872b624c7d61931ba94d87c07f
SHA256

c7f21babab32a5e3d541ef1058a185670651ce54f355af09ac1b9b4452b0c73c
SHA512

5e591c03a57585264b4a51033f0fa1ed7ef1b1c5e48c3d82b7e1743038b637396639ae7d9510d47397a6d9cc13fb2915dc7ced4fda08feb50d715f700427d5dd
SSDEEP

1536:efR9DGtzIedREATlxpyNTgTFteDruNIpSmn7CafJXcmyK5FsNliVBD:efR1GRVE0lSNEaqSpSm7Xty6F24

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11ec2118e334488e2ec17e00fc719f70N

Files

11ec2118e334488e2ec17e00fc719f70N
.exe windows:4 windows x86 arch:x86

8445d51086d241376cb533af6cf025ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord553
ord595
ord599
ord520
ord709
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord531
ord716
ProcCallEngine
ord538
ord645
ord539
ord571
ord100
ord610
ord612
ord542
ord543
ord544
ord545
ord547
ord580

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE