Overview

overview

10

Static

static

8

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6a379a2c6dde2a4e27b3239967bc2ccaf9d41788aa904ee68d2a2de16380a624

  • Size

    4.0MB

  • Sample

    220806-few8haaffn

  • MD5

    3bcf5e8abe826566ad59a780abce7b87

  • SHA1

    dac990aa2d242cddb7027a240c35ea4d45b575b9

  • SHA256

    6a379a2c6dde2a4e27b3239967bc2ccaf9d41788aa904ee68d2a2de16380a624

  • SHA512

    ba01fc56f06f3e02ae47b664c1d9abdf9f04872b912f7c914242fca57e34fdcb4313220892291a704df85adcf22390a71cfc275b5dd912176ddf015e6ae86052

Score
10/10
ytstealerspywarestealerupx

Malware Config

Targets

    • Target

      6a379a2c6dde2a4e27b3239967bc2ccaf9d41788aa904ee68d2a2de16380a624

    • Size

      4.0MB

    • MD5

      3bcf5e8abe826566ad59a780abce7b87

    • SHA1

      dac990aa2d242cddb7027a240c35ea4d45b575b9

    • SHA256

      6a379a2c6dde2a4e27b3239967bc2ccaf9d41788aa904ee68d2a2de16380a624

    • SHA512

      ba01fc56f06f3e02ae47b664c1d9abdf9f04872b912f7c914242fca57e34fdcb4313220892291a704df85adcf22390a71cfc275b5dd912176ddf015e6ae86052

    Score
    10/10
    ytstealerspywarestealerupx

    • YTStealer

      YTStealer is a malware designed to steal YouTube authentication cookies.

      stealerytstealer

    • YTStealer payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks