Overview

overview

10

Static

static

8

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8FAD375A8A496CE65F85DFD94EF6410123C9FA22A3C0B35D9395B8BD79C29033

  • Size

    4.0MB

  • Sample

    220812-hxp81scfe3

  • MD5

    6fe551628b87a45b85dd17d99078b0f2

  • SHA1

    4b4deab383667dabfd2238ca0e7ceacfec7c881f

  • SHA256

    8fad375a8a496ce65f85dfd94ef6410123c9fa22a3c0b35d9395b8bd79c29033

  • SHA512

    d8f13d1f9f93f10b9709c33e50e997c908b9c007c9e6b91c5d26dd22717321f3f17683f80407a1512ab91f4ac186fb27ded635c284226b038c50a06d551c9aeb

Score
10/10
ytstealerspywarestealerupx

Malware Config

Targets

    • Target

      8FAD375A8A496CE65F85DFD94EF6410123C9FA22A3C0B35D9395B8BD79C29033

    • Size

      4.0MB

    • MD5

      6fe551628b87a45b85dd17d99078b0f2

    • SHA1

      4b4deab383667dabfd2238ca0e7ceacfec7c881f

    • SHA256

      8fad375a8a496ce65f85dfd94ef6410123c9fa22a3c0b35d9395b8bd79c29033

    • SHA512

      d8f13d1f9f93f10b9709c33e50e997c908b9c007c9e6b91c5d26dd22717321f3f17683f80407a1512ab91f4ac186fb27ded635c284226b038c50a06d551c9aeb

    Score
    10/10
    ytstealerspywarestealerupx

    • YTStealer

      YTStealer is a malware designed to steal YouTube authentication cookies.

      stealerytstealer

    • YTStealer payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks