7c4f09dbc01fe307a0db2f322e4a9d0359bc0a8df8b58ae7533ad24f8781b818 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7c4f09dbc01fe307a0db2f322e4a9d0359bc0a8df8b58ae7533ad24f8781b818
Size

304KB
MD5

485de14f1d7a6cf5737975824b36944d
SHA1

f508a45efc73a4d3bf63b988ec830a759da14bbe
SHA256

7c4f09dbc01fe307a0db2f322e4a9d0359bc0a8df8b58ae7533ad24f8781b818
SHA512

cd67ce3aea504e1509f11c0374b2074c9eb93b149be33543e4a44819096c3a3a2ff1304579281554bce747e49fc74cd75b1f45948c07d58138fd064f53202e1c
SSDEEP

3072:lttn5ymi8Eu11uZaLJbN2SQ3N7Do0JgT5SVtoaKGlD8yWC242UcdRCU4J4lg4E4T:l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7c4f09dbc01fe307a0db2f322e4a9d0359bc0a8df8b58ae7533ad24f8781b818

Files

7c4f09dbc01fe307a0db2f322e4a9d0359bc0a8df8b58ae7533ad24f8781b818
.exe windows:4 windows x86 arch:x86

88cece97e96e790a80fce9899857c06f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord709
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord608
ord717
ProcCallEngine
ord644
ord685
ord100
ord616

Sections

.text
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vITCB
Size: 4KB - Virtual size: 4KB

.sTcp
Size: 4KB - Virtual size: 4KB

.qVtLY
Size: 4KB - Virtual size: 4KB

.ztLIf
Size: 4KB - Virtual size: 4KB

.tzvG
Size: 4KB - Virtual size: 4KB

.SopyQ
Size: 4KB - Virtual size: 4KB

.kzgmF
Size: 4KB - Virtual size: 4KB

.QCxy
Size: 4KB - Virtual size: 4KB

.kVOV
Size: 4KB - Virtual size: 4KB

.ugwzC
Size: 4KB - Virtual size: 4KB