VesselDetails[.]rar | Triage

Sharing

General

Target

VesselDetails.rar
Size

539KB
MD5

b05e6e87b9ef97901e04c26f7de7252d
SHA1

a19cf134a3c034be67f05e35c55ca13c7f89354e
SHA256

bfb1c7b5e45c1407c35ce2dc11a2b3376df42e03d5c3e3db30937976d8d68493
SHA512

917d5a84d83e5ffc04707d3574617bdc8b7ec825ed954422d79c5881e37eb504e3194a7f984ab8da933807daf005404d0cb2987a3d3a548770a15780d5b33763
SSDEEP

12288:1pI/DqwkhTiFoGmBghywavgVs19oPFRh6t0reVcfguToPkMg:1pRwkRiFyrwNsEp62reOf5ToPlg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Vessel Details.exe

Files

VesselDetails.rar
.rar
Vessel Details.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 563KB - Virtual size: 562KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ