20b08cd8ade41f56f82d6c5dc247aeb0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20b08cd8ade41f56f82d6c5dc247aeb0
Size

20KB
MD5

20b08cd8ade41f56f82d6c5dc247aeb0
SHA1

db5cf84b683f0e0b2d40f57d80337698bcb3613e
SHA256

ad7a3460a9868d0bfa20850716a3ef56c0488eeaa3af70aa19c08bbfd5af76d9
SHA512

dde8235378d898395ba15b2ff496e8d7c40459473ec11e67da579bb521341cf779682c44f76b5655e6b6d5bc233368b78145f61033f347c18cd8f2c9a340da76
SSDEEP

96:G3x0/d0zdKhvvnXMgeCHkf4inDRzMCj13pvnP8vnyr:lish3XxeFlDeuZhG6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20b08cd8ade41f56f82d6c5dc247aeb0

Files

20b08cd8ade41f56f82d6c5dc247aeb0
.exe windows:4 windows x86 arch:x86

55825a2e7f2b86fe3ff779f9f7409e54

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord518
ord598
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ProcCallEngine
ord570
ord100
ord616
ord580
ord581

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ