pyt[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

pyt.exe
Size

98KB
MD5

739733b0472141c29d969c385d29e491
SHA1

2c46a97c6ab3d196cf479a841fed7a79c00044b1
SHA256

68927c428a462802f7f2781cf5d83586de3f8cdf966bd597f996077e4ae20bbf
SHA512

e997897b8787adb2c38e3e05415450c490d335a2aeea1d54b788cc65b0362e01e9e52f7240ec8745ae51a6b06ca25608e9306e0470e555dc43ccb5e98ff4e36c
SSDEEP

1536:s19GQbqxccyilW+XW2wT/yU3Oih3qZv4KSTFTdZG0bAKIsK1OTbWU64I:+9GbDA+Bw73Nqp4K2FhZG0bAsSU9I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
pyt.exe

Files

pyt.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ