Overview

overview

10

Static

static

8

4a574c8f0a...5a.exe

windows7-x64

10

4a574c8f0a...5a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4a574c8f0a8714832f75952af36eb61c2713d04ccb06639956b4ad4d75f9565a

  • Size

    4.3MB

  • Sample

    220808-jvk2yshhb6

  • MD5

    40994e68a8b5a3c3ba777e52230dc796

  • SHA1

    b7e84b45fe0e3144bbe96b0dc9c7318665345102

  • SHA256

    4a574c8f0a8714832f75952af36eb61c2713d04ccb06639956b4ad4d75f9565a

  • SHA512

    13960eb245c7252be641f7d98dfb8a77144dc52184a04cd3d341e3b1e4ed31dc36fb52b09a72e43e28f9792acc393b255a61b4416abc422c4a6c7591dc3ae22c

Score
10/10
ytstealerspywarestealerupx

Malware Config

Targets

    • Target

      4a574c8f0a8714832f75952af36eb61c2713d04ccb06639956b4ad4d75f9565a

    • Size

      4.3MB

    • MD5

      40994e68a8b5a3c3ba777e52230dc796

    • SHA1

      b7e84b45fe0e3144bbe96b0dc9c7318665345102

    • SHA256

      4a574c8f0a8714832f75952af36eb61c2713d04ccb06639956b4ad4d75f9565a

    • SHA512

      13960eb245c7252be641f7d98dfb8a77144dc52184a04cd3d341e3b1e4ed31dc36fb52b09a72e43e28f9792acc393b255a61b4416abc422c4a6c7591dc3ae22c

    Score
    10/10
    ytstealerstealerupxspyware

    • YTStealer

      YTStealer is a malware designed to steal YouTube authentication cookies.

      stealerytstealer

    • YTStealer payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks