104c18a475b0c3fb2bd4ad70261d17f8644edf81c14900006c2b31e665af7592N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

104c18a475b0c3fb2bd4ad70261d17f8644edf81c14900006c2b31e665af7592N
Size

564KB
MD5

f2419210c9d05538f5e8a32129e80880
SHA1

027972943e4e2abda0712b70ac46c129779af43b
SHA256

104c18a475b0c3fb2bd4ad70261d17f8644edf81c14900006c2b31e665af7592
SHA512

01def8d43215bdac359d8f857f11f294330a3c475faeff874436314d05cb280059ad2d6e3a1d6ce29dbd70af3ce86a759276668df7ff6862e524aa2e3ccacd7a
SSDEEP

384:utWBAZEPXzXMIxNlbb+7nQ2B3plSIiI0JSgpNtW6fCrmIPS0gv67ghdeeD1To41O:utWvjXBL5KDpKTX6S91Bphcfb6npEw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
104c18a475b0c3fb2bd4ad70261d17f8644edf81c14900006c2b31e665af7592N

Files

104c18a475b0c3fb2bd4ad70261d17f8644edf81c14900006c2b31e665af7592N
.exe windows:4 windows x86 arch:x86

763b1d48874bcf8ec86fc0e69c54877a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord665
ord597
ord598
ord599
ord631
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord713
ord608
ProcCallEngine
ord644
ord537
ord681
ord100
ord581

Sections

.text
Size: 556KB - Virtual size: 555KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ