ANIKA - VESSEL'S PARTICULARS (0)(0)(1)[.]doc[.]lzh | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ANIKA - VESSEL'S PARTICULARS (0)(0)(1).doc.lzh
Size

640KB
MD5

c6eb11f8dc047071c4eacabc73f26cf1
SHA1

92dd50642af311ad2e283c04cec1bbb8c4e02258
SHA256

efdd2d8e9a1866385100dadefeef61f07c03be08bd4fe300ae4a1fc8e63d0037
SHA512

c86edf6893fda8fc1e43c2233352a61a91ea7520c0f6935429b1545d51afed8ba1f9b150ef25f27805e53680649a69f8e8c6af7355e6f20fd9a04c9064d11592
SSDEEP

12288:b5t4M+GTDYbxtJ6SSm+SYhU1vSaf4vXVVL8GVDCWuBAZuafeZYaHDiZNNDr3bq:8SDSTJ6S5+SUDaf4PDL8ieWlTfTaHDIq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ANIKA - VESSEL'S PARTICULARS (0)(0)(1).doc.scr

Files

ANIKA - VESSEL'S PARTICULARS (0)(0)(1).doc.lzh
.lzh
ANIKA - VESSEL'S PARTICULARS (0)(0)(1).doc.scr
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

iiiK.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 695KB - Virtual size: 695KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ