ytstealer | 88e20ad657048d5785d55070bd21f1c6a7a13624f4e2f87401c2bdb0906632cf | Triage

Submit
Reports

Overview

overview

Static

static

8

winprofile

windows7-x64

winprofile

windows10-1703-x64

Sharing

General

Target

88e20ad657048d5785d55070bd21f1c6a7a13624f4e2f87401c2bdb0906632cf
Size

4.0MB
Sample

220830-ckx57sbdc3
MD5

5b1ff119e06ec333adc1f284581ef7b1
SHA1

f3623b92f1d71ccb40e64504c46523dfc36ff702
SHA256

88e20ad657048d5785d55070bd21f1c6a7a13624f4e2f87401c2bdb0906632cf
SHA512

61e9095a608fc789ba5c53ac0c5fbe17cbedf4e488e9e55ac799dd50fc530c7d4bdf4d2bc151b035f32872cf586ed560765bfca94fe73bd6d2b36e8ebe728575
SSDEEP

98304:jDDKgjzKxYXmWdWvJN23D65qCLWcnx85qhLWuISNCQJN3:HmgjuxtLx8m5pWUeCHNCQP3

Score

10^/10

ytstealer spyware stealer upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

88e20ad657048d5785d55070bd21f1c6a7a13624f4e2f87401c2bdb0906632cf.exe

Resource

win7-20220812-en

ytstealer spyware stealer upx

windows7-x64

4 signatures

300 seconds

Behavioral task

behavioral2

Sample

88e20ad657048d5785d55070bd21f1c6a7a13624f4e2f87401c2bdb0906632cf.exe

Resource

win10-20220812-en

ytstealer spyware stealer upx

windows10-1703-x64

4 signatures

300 seconds

Malware Config

Targets

- Target
  
  88e20ad657048d5785d55070bd21f1c6a7a13624f4e2f87401c2bdb0906632cf
- Size
  
  4.0MB
- MD5
  
  5b1ff119e06ec333adc1f284581ef7b1
- SHA1
  
  f3623b92f1d71ccb40e64504c46523dfc36ff702
- SHA256
  
  88e20ad657048d5785d55070bd21f1c6a7a13624f4e2f87401c2bdb0906632cf
- SHA512
  
  61e9095a608fc789ba5c53ac0c5fbe17cbedf4e488e9e55ac799dd50fc530c7d4bdf4d2bc151b035f32872cf586ed560765bfca94fe73bd6d2b36e8ebe728575
- SSDEEP
  
  98304:jDDKgjzKxYXmWdWvJN23D65qCLWcnx85qhLWuISNCQJN3:HmgjuxtLx8m5pWUeCHNCQP3
Score

10^/10

ytstealer spyware stealer upx
- YTStealer
  YTStealer is a malware designed to steal YouTube authentication cookies.
  stealer ytstealer
- YTStealer payload
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ytstealerspywarestealerupx

behavioral2

ytstealerspywarestealerupx

© 2018-2024

Terms | Privacy