Overview

overview

10

Static

static

8

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file

  • Size

    4.0MB

  • Sample

    220825-s6gy4sfhh5

  • MD5

    ac13631b8c64bbefbe0c95baa07e4ead

  • SHA1

    359589babaf0891c770893a6dfff2bb676e5cbb0

  • SHA256

    7b6662b7e68c82c21609f9c989adbbaeeb2b96fc546a3cdd54168f0d3b743583

  • SHA512

    4deb6783ba6db11228b9b9d88f11d62b0439aec19f80a1c5356e4f5988810451f6dd9ee83107393154ce4a409137a6489fbdde0d53b6bf593d07100dde5befe3

  • SSDEEP

    98304:+CAOvB/KLINihANC1jlUplJ1VrrDHhpb8zQL7wX9Kc7Ku:PJ/KEkWNCplklJ7DTSQL74wE

Score
10/10
ytstealerspywarestealerupx

Malware Config

Targets

    • Target

      file

    • Size

      4.0MB

    • MD5

      ac13631b8c64bbefbe0c95baa07e4ead

    • SHA1

      359589babaf0891c770893a6dfff2bb676e5cbb0

    • SHA256

      7b6662b7e68c82c21609f9c989adbbaeeb2b96fc546a3cdd54168f0d3b743583

    • SHA512

      4deb6783ba6db11228b9b9d88f11d62b0439aec19f80a1c5356e4f5988810451f6dd9ee83107393154ce4a409137a6489fbdde0d53b6bf593d07100dde5befe3

    • SSDEEP

      98304:+CAOvB/KLINihANC1jlUplJ1VrrDHhpb8zQL7wX9Kc7Ku:PJ/KEkWNCplklJ7DTSQL74wE

    Score
    10/10
    ytstealerstealerupxspyware

    • YTStealer

      YTStealer is a malware designed to steal YouTube authentication cookies.

      stealerytstealer

    • YTStealer payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

1
T1081

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks