a579a4c2c495f0f6c7211b98f86a10d842029da58112bb877315104f5904affeN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a579a4c2c495f0f6c7211b98f86a10d842029da58112bb877315104f5904affeN
Size

20KB
MD5

28b242793ee261ee915b11e50d6746f0
SHA1

3b7689989d880375a8dd7372c28ab2d8d25f64cf
SHA256

a579a4c2c495f0f6c7211b98f86a10d842029da58112bb877315104f5904affe
SHA512

f3fb47aae8d19a523e2487cc2cf58feb1a6797f73be30904da94b1991d3d5eeb268253144c7ad7000d39dc730303ffc068f4a54cb7718104e63b54fb2935a0da
SSDEEP

192:A6S6q4k4k4k4k4k4khYAYAYURvbPLFL/yi+P7ep2zJxQaycxn0Gh08OQwWWPxpJy:fJBbbbbbGDD9zDFD4P22Xv0FwqPlkLHJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a579a4c2c495f0f6c7211b98f86a10d842029da58112bb877315104f5904affeN

Files

a579a4c2c495f0f6c7211b98f86a10d842029da58112bb877315104f5904affeN
.exe windows:4 windows x86 arch:x86

560ada3e895ae3ac1685db5571ca73b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord595
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord717
ProcCallEngine
ord644
ord570
ord685
ord100
ord616

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ