LIMS[.]Client[.]Vessels[.]dll | Triage

Sharing

General

Target

LIMS.Client.Vessels.dll
Size

1.6MB
MD5

20d582962a01130c3fb07af042384243
SHA1

9ded3a69b4f75d1f1fc43ce4108439b2ef097394
SHA256

30c5386adec560e7877788ae2938f14ded3393e827139a3038887d9862204315
SHA512

443752d2c2a95cf3404fc47b9667fa166730eaa17c23fb424c47f197e51c37db8cbe0e21c4b1a0ccab6cc061a07d56cc2b49d5e67c8ef8b43087c1b42462fde3
SSDEEP

12288:F8yj/rXbY98iA5yx9gIdJTnZWXx/4Ep/b9+O/gDbH0wDY2F9NuNOIHRYb9rw+ioY:F9bY98itgITTo/bKBAF8OmU3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
LIMS.Client.Vessels.dll

Files

LIMS.Client.Vessels.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\wangjx\project\.net\HGSOMS\Client\LIMS.Client.Vessels\obj\Debug\LIMS.Client.Vessels.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1004B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ