ytstealer | 3c4ae55e479c695d5aa5dc9ee43d94828d15c5704fafa94fb8123ef7a25485c8 | Triage

Submit
Reports

Overview

overview

Static

static

8

winprofile

windows7-x64

winprofile

windows10-1703-x64

Sharing

General

Target

3c4ae55e479c695d5aa5dc9ee43d94828d15c5704fafa94fb8123ef7a25485c8
Size

4.0MB
Sample

220830-b21rzshhfm
MD5

153512c6b4ff21d7292831b08dbf6bab
SHA1

724501816dd397a985cca95edd912d73122e6887
SHA256

3c4ae55e479c695d5aa5dc9ee43d94828d15c5704fafa94fb8123ef7a25485c8
SHA512

8d246a8e66ba6ea1dc900e48a9247f4f6baa23f52821c54d926552ea0c47e566e518798d51d5260e2078ef55650d83761e4b3c74d105f9cfeed4d16b495d6a0c
SSDEEP

98304:vEUWrIfLfc71k1IbBZVnQrDK+zRvL/YvhQgpR2P6IMsS:vEUWrafciybBZVm1NL/yLs6Ia

Score

10^/10

ytstealer spyware stealer upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

3c4ae55e479c695d5aa5dc9ee43d94828d15c5704fafa94fb8123ef7a25485c8.exe

Resource

win7-20220812-en

ytstealer spyware stealer upx

windows7-x64

6 signatures

300 seconds

Behavioral task

behavioral2

Sample

3c4ae55e479c695d5aa5dc9ee43d94828d15c5704fafa94fb8123ef7a25485c8.exe

Resource

win10-20220812-en

ytstealer spyware stealer upx

windows10-1703-x64

6 signatures

300 seconds

Malware Config

Targets

- Target
  
  3c4ae55e479c695d5aa5dc9ee43d94828d15c5704fafa94fb8123ef7a25485c8
- Size
  
  4.0MB
- MD5
  
  153512c6b4ff21d7292831b08dbf6bab
- SHA1
  
  724501816dd397a985cca95edd912d73122e6887
- SHA256
  
  3c4ae55e479c695d5aa5dc9ee43d94828d15c5704fafa94fb8123ef7a25485c8
- SHA512
  
  8d246a8e66ba6ea1dc900e48a9247f4f6baa23f52821c54d926552ea0c47e566e518798d51d5260e2078ef55650d83761e4b3c74d105f9cfeed4d16b495d6a0c
- SSDEEP
  
  98304:vEUWrIfLfc71k1IbBZVnQrDK+zRvL/YvhQgpR2P6IMsS:vEUWrafciybBZVm1NL/yLs6Ia
Score

10^/10

ytstealer spyware stealer upx
- YTStealer
  YTStealer is a malware designed to steal YouTube authentication cookies.
  stealer ytstealer
- YTStealer payload
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ytstealerspywarestealerupx

behavioral2

ytstealerspywarestealerupx

© 2018-2024

Terms | Privacy