Pierdziadek Helper[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Pierdziadek Helper.exe
Size

3.1MB
MD5

0973d9e432caf83c91b85165530881e8
SHA1

891bb30121d277df9814af64c0b8dafc9a4bf38e
SHA256

733e01542c00b778bae10ecc1cb8f04105524a73f83b08bf496db67f04433fd2
SHA512

4808e93a60ab0b01ac5660c40255780f83e0392cf276af4aca2554dc76de37e68200b1deedef367a111baaf646f5e8b163c97e5955dd8f69c91ce85f18642b0e
SSDEEP

49152:GeF6JzXyba6nidfFSfuxO/iJe2URoGiBzjEeLcH:jpqSfuU/iXiozLcH

Score

1^/10

Malware Config

Signatures

Files

Pierdziadek Helper.exe
.exe windows:4 windows x64 arch:x64

Code Sign

61:ca:cd:f6:38:6c:50:93:4d:fe:43:b7:e9:0e:13:f5
Certificate

Issuer

CN=Pierdziadek Helper

Not Before

09/12/2020, 19:44

Not After

10/12/2030, 19:44

Subject

CN=Pierdziadek Helper

b0:8d:6a:ad:b9:c3:25:ac:47:14:a8:ff:94:19:3e:87:47:f7:e8:aa
Signer

Actual PE Digest

b0:8d:6a:ad:b9:c3:25:ac:47:14:a8:ff:94:19:3e:87:47:f7:e8:aa

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ