ytstealer | 719a9a17c53a7eff99714ab010582f6fabbb87fa322148fa6ba35dd10a8bfb2a | Triage

Submit
Reports

Overview

overview

Static

static

8

winprofile

windows7-x64

winprofile

windows10-1703-x64

Sharing

General

Target

719a9a17c53a7eff99714ab010582f6fabbb87fa322148fa6ba35dd10a8bfb2a
Size

4.0MB
Sample

220915-d24vrabhb8
MD5

ceb82ee9c3f7d44a6ea4d9d5f13eeafb
SHA1

21cfb9421f8b6c28bf6c6c0f4795eb69fe8671c0
SHA256

719a9a17c53a7eff99714ab010582f6fabbb87fa322148fa6ba35dd10a8bfb2a
SHA512

bf0a6a855140e46ca3b9e063c045935bea7f759c041a0f10631cc17c5544b30312657c9ac5c51a3368f8d56105b8dbceb6789599629ea47d6d5fcc48ef03e71c
SSDEEP

98304:UnjEWH08cS19gMSx//jDar2VhRAOw811/Ouc1kU2yxQNi:mPUlS9TIDD82Vvl11I1TpxJ

Score

10^/10

ytstealer spyware stealer upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

719a9a17c53a7eff99714ab010582f6fabbb87fa322148fa6ba35dd10a8bfb2a.exe

Resource

win7-20220812-en

ytstealer spyware stealer upx

windows7-x64

6 signatures

300 seconds

Behavioral task

behavioral2

Sample

719a9a17c53a7eff99714ab010582f6fabbb87fa322148fa6ba35dd10a8bfb2a.exe

Resource

win10-20220812-en

ytstealer spyware stealer upx

windows10-1703-x64

6 signatures

300 seconds

Malware Config

Targets

- Target
  
  719a9a17c53a7eff99714ab010582f6fabbb87fa322148fa6ba35dd10a8bfb2a
- Size
  
  4.0MB
- MD5
  
  ceb82ee9c3f7d44a6ea4d9d5f13eeafb
- SHA1
  
  21cfb9421f8b6c28bf6c6c0f4795eb69fe8671c0
- SHA256
  
  719a9a17c53a7eff99714ab010582f6fabbb87fa322148fa6ba35dd10a8bfb2a
- SHA512
  
  bf0a6a855140e46ca3b9e063c045935bea7f759c041a0f10631cc17c5544b30312657c9ac5c51a3368f8d56105b8dbceb6789599629ea47d6d5fcc48ef03e71c
- SSDEEP
  
  98304:UnjEWH08cS19gMSx//jDar2VhRAOw811/Ouc1kU2yxQNi:mPUlS9TIDD82Vvl11I1TpxJ
Score

10^/10

ytstealer spyware stealer upx
- YTStealer
  YTStealer is a malware designed to steal YouTube authentication cookies.
  stealer ytstealer
- YTStealer payload
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ytstealerspywarestealerupx

behavioral2

ytstealerspywarestealerupx

© 2018-2024

Terms | Privacy