b1ec50e8aa3695fd5b0ec9313d1b90bfaf03f9cf36c708672149d7d530b0ac8d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b1ec50e8aa3695fd5b0ec9313d1b90bfaf03f9cf36c708672149d7d530b0ac8d
Size

36KB
MD5

b0b7be69ad6385df30e3ad6edf898ccb
SHA1

93e6963ec8161e1b9a339e9a8864d87e4134bf4a
SHA256

b1ec50e8aa3695fd5b0ec9313d1b90bfaf03f9cf36c708672149d7d530b0ac8d
SHA512

5c641d3b0a6a018a42a04fd568df3dd011007f888e81651bd572f316d8c143c097d878781306ff2a6f35eb2c0dee4488db1c3938a9d94796f1bd029309ac7c00
SSDEEP

768:gN1gqztfYolsHIWNrofnGuuLxaD4jwlKeoxgx3RnvGezOGpHpYWW36q:gDgqzmolsHIiofGuuED4CJowhnH5Ji3R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b1ec50e8aa3695fd5b0ec9313d1b90bfaf03f9cf36c708672149d7d530b0ac8d

Files

b1ec50e8aa3695fd5b0ec9313d1b90bfaf03f9cf36c708672149d7d530b0ac8d
.exe windows:4 windows x86 arch:x86

29e3806deec411eeb9c84a5b5112ac75

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord588
MethCallEngine
ord518
ord662
ord593
ord594
ord520
ord709
ord631
ord632
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord606
ord608
ProcCallEngine
ord645
ord572
ord100
ord616
ord618
ord546
ord581

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ