f37f330a948fe2d0f374b97e7db3c9f7d31d8e21d4698f5261997e7e050617f8N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f37f330a948fe2d0f374b97e7db3c9f7d31d8e21d4698f5261997e7e050617f8N
Size

152KB
MD5

3136a7e278216ffe0d87ca1ffa75e400
SHA1

2b09bd64802971d7e946a0dd76666b767a68701e
SHA256

f37f330a948fe2d0f374b97e7db3c9f7d31d8e21d4698f5261997e7e050617f8
SHA512

7166f287595cf2ecd95432d8198fc68b73bfd8a7befd8e7f1d37f6dc7d999dbb5306080c397eab7f479be66ddc36bab76bcc5461cd623abc4515a966587246e0
SSDEEP

3072:Dj8BPOI5s8Dx3mFouPpqFqqj8BPOI5s8Dx:D4G7AmFo3Fqq4G7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f37f330a948fe2d0f374b97e7db3c9f7d31d8e21d4698f5261997e7e050617f8N

Files

f37f330a948fe2d0f374b97e7db3c9f7d31d8e21d4698f5261997e7e050617f8N
.exe windows:4 windows x86 arch:x86

2024ccec98290a0edd9b8835e06eafa4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord518
ord666
ord595
ord598
ord599
ord520
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord608
ord717
ord535
ord100
ord617
ord581

Sections

.text
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ