f476867e6a2b310df8749912774628ed7f41de1ef4fa16e44f330d39a9dff76dN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f476867e6a2b310df8749912774628ed7f41de1ef4fa16e44f330d39a9dff76dN
Size

88KB
MD5

f63d4b865ba536b74d89962c5ad1a780
SHA1

2718c23650254253bdb8bb33054b064cc7b3a548
SHA256

f476867e6a2b310df8749912774628ed7f41de1ef4fa16e44f330d39a9dff76d
SHA512

d54dc4202c9b75aa1bf1c3262526c7d35fb58e1a5d212d203a49cf04e8e8ec45df5c01c69de2f78dcf2a71a3ea3a0cb3d7be6ff9f765855b33e7a0d58900c997
SSDEEP

1536:9Gcs78gxKgeIYMXLQE+N835cIK0/N6AEOdDJAEKmdgI:8cUxdTJ+YG0/N6pOjpB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f476867e6a2b310df8749912774628ed7f41de1ef4fa16e44f330d39a9dff76dN

Files

f476867e6a2b310df8749912774628ed7f41de1ef4fa16e44f330d39a9dff76dN
.exe windows:4 windows x86 arch:x86

fc5b9d77c4b65d1c4a03884ef2dedde3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord620
ord518
ord553
ord666
ord667
ord303
ord520
ord309
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ProcCallEngine
ord538
ord645
ord539
ord570
ord681
ord576
ord100
ord617
ord619
ord542
ord543
ord544
ord545
ord547
ord580

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE