General

  • Target

    4289c2ea1273ca1b4fc85b7898af3744140363f348e06caaa11d44dfd0ae4a3c

  • Size

    4.0MB

  • Sample

    220830-b4myxabac9

  • MD5

    7f8c8bce5779f7dcc7283899d0238432

  • SHA1

    8278e8264bf32ac831cd65dc90e53d9bcd5eb4c4

  • SHA256

    4289c2ea1273ca1b4fc85b7898af3744140363f348e06caaa11d44dfd0ae4a3c

  • SHA512

    b75f4098cd1c4b7db0d395b6c087311db58be0f403b5b0635dc735ae047405cbfe40d76901504b7734f616cccca3ade0a07eb7a1b3e30707157cb7ff17985db1

  • SSDEEP

    98304:8ar7xanLTcX3AVe9xIthoJ9nNw4W/dWqNReGXcNdV:8JQTxAoVw4W4q/e4

Malware Config

Targets

    • Target

      4289c2ea1273ca1b4fc85b7898af3744140363f348e06caaa11d44dfd0ae4a3c

    • Size

      4.0MB

    • MD5

      7f8c8bce5779f7dcc7283899d0238432

    • SHA1

      8278e8264bf32ac831cd65dc90e53d9bcd5eb4c4

    • SHA256

      4289c2ea1273ca1b4fc85b7898af3744140363f348e06caaa11d44dfd0ae4a3c

    • SHA512

      b75f4098cd1c4b7db0d395b6c087311db58be0f403b5b0635dc735ae047405cbfe40d76901504b7734f616cccca3ade0a07eb7a1b3e30707157cb7ff17985db1

    • SSDEEP

      98304:8ar7xanLTcX3AVe9xIthoJ9nNw4W/dWqNReGXcNdV:8JQTxAoVw4W4q/e4

    • YTStealer

      YTStealer is a malware designed to steal YouTube authentication cookies.

    • YTStealer payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v6

Tasks