Overview

overview

10

Static

static

8

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2039DEA342AA1E589203CBFBCDA1BB56B8DC9CAAC73D512AD1BE8E61B0BB8398

  • Size

    4.0MB

  • Sample

    220720-jcx9kadfcq

  • MD5

    471f775c761f5b6dd31fedc8e3a1350b

  • SHA1

    0f9e6515e9364279b63b86b5978c845240f51e9c

  • SHA256

    2039dea342aa1e589203cbfbcda1bb56b8dc9caac73d512ad1be8e61b0bb8398

  • SHA512

    a63e4219d20cc92197bace9849895ff96e78f85840a1f9c059de12d8797a641801d1b4ed362be83c719259c5dc65b998f77ee4632718454de5d095c74e2112f9

Score
10/10
ytstealerspywarestealerupx

Malware Config

Targets

    • Target

      2039DEA342AA1E589203CBFBCDA1BB56B8DC9CAAC73D512AD1BE8E61B0BB8398

    • Size

      4.0MB

    • MD5

      471f775c761f5b6dd31fedc8e3a1350b

    • SHA1

      0f9e6515e9364279b63b86b5978c845240f51e9c

    • SHA256

      2039dea342aa1e589203cbfbcda1bb56b8dc9caac73d512ad1be8e61b0bb8398

    • SHA512

      a63e4219d20cc92197bace9849895ff96e78f85840a1f9c059de12d8797a641801d1b4ed362be83c719259c5dc65b998f77ee4632718454de5d095c74e2112f9

    Score
    10/10
    ytstealerspywarestealerupx

    • YTStealer

      YTStealer is a malware designed to steal YouTube authentication cookies.

      stealerytstealer

    • YTStealer payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks