Voyage Orders Detail[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Voyage Orders Detail.exe
Size

759KB
MD5

95f3c49fd7969574fb9b5296c527aa13
SHA1

cde40ad6dff41f36a7c314bf91ba8c9de05a029a
SHA256

379ccf754b70aa15e6d95ce3ff7076eea655b6c833033c3a95e8c6108f3c0f59
SHA512

8566bd4ced3c0583978bbd5fff4bed8baafe06ac8b2b63d4402ecb4a1ea2d16e08c03cbcc827099a8baa52b00e9333986f2e6d8250b8f3a5d4fcb21c74d0e35f
SSDEEP

12288:2UlRuZQhaDnLMzIL2q+RTdOL8x7wTYXGr18xAOKHqZEuv1Y5tqm31wsTuEHe:2UlRugOyqGUL8x7wTYX2+mLKmuvKtqEm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Voyage Orders Detail.exe

Files

Voyage Orders Detail.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 757KB - Virtual size: 756KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ