PO YDTGHRTCG[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

1

PO YDTGHRTCG.exe

windows7-x64

PO YDTGHRTCG.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

PO YDTGHRTCG.exe

Resource

win7-20230220-en

snakekeylogger collection keylogger spyware stealer

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

PO YDTGHRTCG.exe

Resource

win10v2004-20230221-en

snakekeylogger keylogger stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

PO YDTGHRTCG.exe
Size

587KB
MD5

056bbe48688212700c08b0cef11e41be
SHA1

ef7864d95657c2f4566dace5cf382ce3a3829699
SHA256

fa0347649fd59361aabea1d68c50b40bfca3835543cbf43620ee8e44f7214d5e
SHA512

602566df8dac33ed4062162ff62ed130703168eb2cac34e26d4f71288ae74bdede465854bf6573c15174c5a0ea9931d639f16feb0f5815a58b3c2c9d771502b3
SSDEEP

6144:MiknabTyYwDAEWEtc7aeT+7tN3Fu/OxAPZl7it9Xf8vC0uJlLsZRFJKv0ND:SnuuYwUEWqXeaZ1FBxAPLWrbJAFK0

Score

1^/10

Malware Config

Signatures

Files

PO YDTGHRTCG.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 570KB - Virtual size: 569KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy