a134613f354a5c448c0c7b3d8ed99ece | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a134613f354a5c448c0c7b3d8ed99ece
Size

45KB
MD5

a134613f354a5c448c0c7b3d8ed99ece
SHA1

e124cd56bf3c9dd90295e1b328a7ceba7995a79b
SHA256

bdcceff5aafb42ee174c98123b2268f2def0196a8bd58533f74b1b1a683bbb14
SHA512

41d5f13a65add933fdf50d27af8f839eb10b2f7e5951fb4499a9775243fc62967a955c4fe070f61e1184c275913752650232a19215d2708e31524058ad4fc18a
SSDEEP

768:prdTutAeM+aavZWcYnX5eWjvBROe9Dv+U4CaVQZ:Bda++jBW3nJe0aKD2pRV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a134613f354a5c448c0c7b3d8ed99ece

Files

a134613f354a5c448c0c7b3d8ed99ece
.exe windows:4 windows x86 arch:x86

1c58c38ede4fefcc90ab90911cbaeda4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

h:\MASTERS\Mailer3\NEW\SMSmailer\Mailer3\release\Helper.pdb

Imports

kernel32

GetWindowsDirectoryA
GetCommandLineA
Sleep
CreateProcessA
lstrcatA
GetStartupInfoA
CopyFileA
SetFileAttributesA
DeleteFileA
lstrcpyA

shell32

SHGetFolderPathA

Sections

.text
Size: 512B - Virtual size: 285B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 44KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE