SMTPChecker[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

SMTPChecker.exe
Size

23.1MB
MD5

b2d4138a7cbb8b3e02d9f61c76f31f18
SHA1

629dfd6d138fe6a9ff0492a63ef1ce0bd5356c6c
SHA256

eabb7c5d04a447b6af835c375f9e5535fa1250f5ae976686048bf4bc9766612f
SHA512

f9cc089193c91f603f0ed6f47f84fa7483344268a88b2bfdaa8914e5e9f07af84ab206bd621272718eaca8a3babdceeaf58cd25197b24adfc0cede6f3933c988
SSDEEP

393216:ZSzcigXdH1z88oOJOVyRzVOrRS1/Q1NeJ42Mjck4GREfMfoPwY74HpC1P5aw:mVgc8hJO4wK/EdcsEfQobeM6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

SMTPChecker.exe

resource
SMTPChecker.exe

Files

SMTPChecker.exe
.exe windows:6 windows x64 arch:x64

2b2f4c711f67c2089bc0e7f72669ca4f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

shell32

SHFileOperationW

kernel32

SetLastError
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
GetModuleHandleA
LoadLibraryA
GetProcAddress

Sections

.text
Size: - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.@ q
Size: - Virtual size: 16.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.4$=
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.[[~
Size: 23.1MB - Virtual size: 23.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b2f4c711f67c2089bc0e7f72669ca4f

Headers

DLL Characteristics

File Characteristics

Imports

shell32

kernel32

Sections

.text Size: - Virtual size: 129KB

.rdata Size: - Virtual size: 50KB

.data Size: - Virtual size: 147KB

.pdata Size: - Virtual size: 6KB

_RDATA Size: - Virtual size: 500B

.@ q Size: - Virtual size: 16.9MB

.4$= Size: 2KB - Virtual size: 2KB

.[[~ Size: 23.1MB - Virtual size: 23.1MB

.reloc Size: 512B - Virtual size: 260B

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: - Virtual size: 129KB

.rdata
Size: - Virtual size: 50KB

.data
Size: - Virtual size: 147KB

.pdata
Size: - Virtual size: 6KB

_RDATA
Size: - Virtual size: 500B

.@ q
Size: - Virtual size: 16.9MB

.4$=
Size: 2KB - Virtual size: 2KB

.[[~
Size: 23.1MB - Virtual size: 23.1MB

.reloc
Size: 512B - Virtual size: 260B

.rsrc
Size: 1KB - Virtual size: 1KB