ceb7312367e44335e44861552ac04994b2dcbebf4d166f64209ae14da02d2e38N | Triage

Sharing

General

Target

ceb7312367e44335e44861552ac04994b2dcbebf4d166f64209ae14da02d2e38N
Size

36KB
MD5

2c29381e338cdb2292bd31b60c28f4e0
SHA1

d2fbc71b0fb593f9d5489ea90d7916a7e22fa789
SHA256

ceb7312367e44335e44861552ac04994b2dcbebf4d166f64209ae14da02d2e38
SHA512

ade9d38e6ab74f8baa9f7e12f333b5d2315e2f92b18be5e404a9b33075c488038535cc917d9025b91999138d691da66266b0710ba20c084c5680434230fab229
SSDEEP

768:xdf5Jutj/1EUUQbb0xEFxVd42OWSCyidt9n7Lg/+aJMNUzNNlU:xdOtpV4qdRO5riZqusW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ceb7312367e44335e44861552ac04994b2dcbebf4d166f64209ae14da02d2e38N

Files

ceb7312367e44335e44861552ac04994b2dcbebf4d166f64209ae14da02d2e38N
.exe windows:4 windows x86 arch:x86

50894bf2cd424224f093a7f5fde0d5a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHBrowseForFolder

msvbvm60

MethCallEngine
ord518
ord665
ord669
EVENT_SINK_AddRef
ord563
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord717
ProcCallEngine
ord644
ord538
ord570
ord100
ord432

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ