Overview

overview

10

Static

static

8

malware_sm...81.exe

windows7-x64

10

malware_sm...81.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    malware_smoke_1674270581

  • Size

    4.0MB

  • Sample

    221004-shgcnsbcd9

  • MD5

    063c6d9a6b645ef5d4e756a64e742afc

  • SHA1

    72857a2a3fe6948b5fcb6a8d5555b1fc56b6868d

  • SHA256

    8101c71c2c31df8da09ed7dd55da9bbd949b028f8f54f0e1cbffab82b192ed87

  • SHA512

    54166ad3375dc246519d56f3710f85b792e3bd13daeee619c641f487b0a11691433d0c9900ba82f6c7d29b2c92e73cf82707b3099753dda6583b39db8d7f8c0b

  • SSDEEP

    98304:v/M+dZZSK8hdw8wqxO0dGZeZOLQLtPeEdtcGbr/fBBz:JZSK8hd7NO0cZOqabhr/Lz

Score
10/10
ytstealerspywarestealerupx

Malware Config

Targets

    • Target

      malware_smoke_1674270581

    • Size

      4.0MB

    • MD5

      063c6d9a6b645ef5d4e756a64e742afc

    • SHA1

      72857a2a3fe6948b5fcb6a8d5555b1fc56b6868d

    • SHA256

      8101c71c2c31df8da09ed7dd55da9bbd949b028f8f54f0e1cbffab82b192ed87

    • SHA512

      54166ad3375dc246519d56f3710f85b792e3bd13daeee619c641f487b0a11691433d0c9900ba82f6c7d29b2c92e73cf82707b3099753dda6583b39db8d7f8c0b

    • SSDEEP

      98304:v/M+dZZSK8hdw8wqxO0dGZeZOLQLtPeEdtcGbr/fBBz:JZSK8hd7NO0cZOqabhr/Lz

    Score
    10/10
    ytstealerspywarestealerupx

    • YTStealer

      YTStealer is a malware designed to steal YouTube authentication cookies.

      stealerytstealer

    • YTStealer payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks