Overview

overview

10

Static

static

8

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    FC5A8E0502A80A72FF4367DCCEDE65DE01FCF4C6378A9D57471677C56DC973A4

  • Size

    4.0MB

  • Sample

    220720-ka3lyaeban

  • MD5

    a4c56a3f4436fdc2f7e362abae6e7653

  • SHA1

    b2ff43fbfb4adc8fa6bf0ab03d5f0b9adfcb365f

  • SHA256

    fc5a8e0502a80a72ff4367dccede65de01fcf4c6378a9d57471677c56dc973a4

  • SHA512

    2aacd3ec4b29ee6dddc5fdf910ed7d0cad02cc73e51a83641a7fc84c4a3c6357e0bc6015cfb56b08bf8e43618f881842db0995cf3358bc4f761761e0d2696be0

Score
10/10
ytstealerspywarestealerupx

Malware Config

Targets

    • Target

      FC5A8E0502A80A72FF4367DCCEDE65DE01FCF4C6378A9D57471677C56DC973A4

    • Size

      4.0MB

    • MD5

      a4c56a3f4436fdc2f7e362abae6e7653

    • SHA1

      b2ff43fbfb4adc8fa6bf0ab03d5f0b9adfcb365f

    • SHA256

      fc5a8e0502a80a72ff4367dccede65de01fcf4c6378a9d57471677c56dc973a4

    • SHA512

      2aacd3ec4b29ee6dddc5fdf910ed7d0cad02cc73e51a83641a7fc84c4a3c6357e0bc6015cfb56b08bf8e43618f881842db0995cf3358bc4f761761e0d2696be0

    Score
    10/10
    ytstealerspywarestealerupx

    • YTStealer

      YTStealer is a malware designed to steal YouTube authentication cookies.

      stealerytstealer

    • YTStealer payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks