Voyage Order Details[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Voyage Order Details.zip
Size

299KB
MD5

9af0d9a240bcdd19c8439fff6fdb917f
SHA1

46d17f8ffb774c7a5f785d1c161e6e73bc0e5f65
SHA256

c1c11057db88b18bcedb34320cdad55ae98f427ff132268b5b119ea5822b904c
SHA512

de99ce1e7fd9d01444bc82781c1c8ec052b316dcf9703bc4bd6e541044a51266e18690fe262fe82296ef342bad739131d5b1777f11dbd703e1a8f2fd650745ab
SSDEEP

6144:UoUZ9nEGLAW0FllLtGZZkONz2+1djPeGI39qIVHiE9zwAxq/:URZ5EGOZG6GzN/mGg9qc/zwAw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Voyage Order Details.exe

Files

Voyage Order Details.zip
.zip
Voyage Order Details.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 484KB - Virtual size: 484KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ