PRE ALERT NOTICE[.]zip | Triage

Sharing

General

Target

PRE ALERT NOTICE.zip
Size

674KB
MD5

28826531e8dacd56928090ae7063cb83
SHA1

2ed25aa96acfa069ec90efa271ab835edbad9f57
SHA256

5cf604ed1b9d5d18625e82b4e727e1fa12b1a3eaf9dde01e3d36103e1d532bbd
SHA512

ed64ebb28338bcbc05eb68561b3f2ff5e2ba7f60322110c7202416f0483b989e9671113ddcbb773062e1cc8932d8215dda4be2019ea7346a703f5ae1e629caf4
SSDEEP

12288:ZLTq7346JLzYnXieaW2A/PPD3CdUkQj1YBKn5YRomwL3:9e734QxPWlP/kQCBu5YRoHL3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PRE ALERT NOTICE.exe

Files

PRE ALERT NOTICE.zip
.zip
PRE ALERT NOTICE.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 737KB - Virtual size: 736KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ