ARRIVAL NOTICE[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ARRIVAL NOTICE.zip
Size

534KB
MD5

f1e338ee4d4ff5682469ab2574a638a6
SHA1

c7e8500ade74f14cdac27aa6b98c5f74564c362c
SHA256

f43d20212e4c74c7b21337e14582a913b7182a59e96111ccc3d4c24b23cb168e
SHA512

c3a63c27d84ffe9b997b7d083cef50793e2d0adaee26f281e5db34b3f3e466c07f93f64cda57da1845986ed6f74c2b9db45f2722c2e218a75dfab896e04cd278
SSDEEP

12288:vbCc+RvUiuv2oLFWYJQgOj4/onn2k1cVZGRT68fLA:DCrfuPFizk/on2xyx6KLA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ARRIVAL NOTICE.exe

Files

ARRIVAL NOTICE.zip
.zip
ARRIVAL NOTICE.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 885KB - Virtual size: 885KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ