Overview

overview

10

Static

static

8

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2f3c5db2ebcc3780f9507e572a26e332505905a1b9c9b3086e689ccbe463546b

  • Size

    4.0MB

  • Sample

    220830-176ymacahr

  • MD5

    e4d3f5b6e53c0188e6ff2081b87cbd82

  • SHA1

    a43c60c08f67a90aa6836d66de8bdf0179f4d9f8

  • SHA256

    2f3c5db2ebcc3780f9507e572a26e332505905a1b9c9b3086e689ccbe463546b

  • SHA512

    9ea5c68a1e9cc8409efc41edac3cc282aa27bbae59cebf382347d2a2f824d06a284f07f6455ea3c35035d89f66434a1c1078f9d0560404f8257dc84d77afb060

  • SSDEEP

    98304:+POnSi9y/6yhvKs71LA7zkr+kK9N3Kc+VMcOAcuStVih:+DiY/3R7RLJren3j+SXtVi

Score
10/10
ytstealerspywarestealerupx

Malware Config

Targets

    • Target

      2f3c5db2ebcc3780f9507e572a26e332505905a1b9c9b3086e689ccbe463546b

    • Size

      4.0MB

    • MD5

      e4d3f5b6e53c0188e6ff2081b87cbd82

    • SHA1

      a43c60c08f67a90aa6836d66de8bdf0179f4d9f8

    • SHA256

      2f3c5db2ebcc3780f9507e572a26e332505905a1b9c9b3086e689ccbe463546b

    • SHA512

      9ea5c68a1e9cc8409efc41edac3cc282aa27bbae59cebf382347d2a2f824d06a284f07f6455ea3c35035d89f66434a1c1078f9d0560404f8257dc84d77afb060

    • SSDEEP

      98304:+POnSi9y/6yhvKs71LA7zkr+kK9N3Kc+VMcOAcuStVih:+DiY/3R7RLJren3j+SXtVi

    Score
    10/10
    ytstealerspywarestealerupx

    • YTStealer

      YTStealer is a malware designed to steal YouTube authentication cookies.

      stealerytstealer

    • YTStealer payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks