ystpaysdk[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ystpaysdk.dll
Size

31KB
MD5

a3794e7fa01b9e2670c2be6742707e43
SHA1

798027848b900e73b925d9b8fb65e75d3118bf51
SHA256

b6a2d132d35570d019dacf0230c9bba5c48ab835f969323f8375f270a44bac75
SHA512

99ec205830f1f8f813f5cfb1562d80be26c137a610296955862e8b0f7c9b28f6b9bfae4cd45853aff6cdc31e302107fec70ee41a93a2776d96b83f1ad5b81408
SSDEEP

384:p7obdqCtT30U3+ClIvWSr8XmvDS+yoE9epENePmj3a3RxORBzsIB08/Pv9JGKyW1:0dlT30E3IvWSr82rSNi4eujHn28HvJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ystpaysdk.dll

Files

ystpaysdk.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\Develop\C# Projects\ystpaysdk\ystpaysdk\obj\Release\ystpaysdk.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ