ytstealer | c1eae8655ba2f8afc1fdba12f836ad4ba4d26057109b8f70519aba2b88c9b92b | Triage

Submit
Reports

Overview

overview

Static

static

8

malware_sm...19.exe

windows7-x64

malware_sm...19.exe

windows10-2004-x64

Sharing

General

Target

malware_smoke_95845919
Size

4.0MB
Sample

221004-st31tabffm
MD5

f2b90caf89abf936fa91a9b007330174
SHA1

f6d40b9d09088cbc360afc0e0402d6dca5a8dac2
SHA256

c1eae8655ba2f8afc1fdba12f836ad4ba4d26057109b8f70519aba2b88c9b92b
SHA512

87bbf70f746b64191cb5075157a9de13852626d1cf49f85695da2ebc53d7712e4f6039f0aedda0842294bd670e14b43800b97e0c0acb9f3711a055e3feb6f5b0
SSDEEP

98304:r0w4bFKyOF2oGgYUIjn+xU9jzv/4hbznwSIFnRL:rp4RKElgY7n+kzva+R

Score

10^/10

ytstealer spyware stealer upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

malware_smoke_95845919.exe

Resource

win7-20220812-en

ytstealer spyware stealer upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

malware_smoke_95845919.exe

Resource

win10v2004-20220901-en

ytstealer spyware stealer upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  malware_smoke_95845919
- Size
  
  4.0MB
- MD5
  
  f2b90caf89abf936fa91a9b007330174
- SHA1
  
  f6d40b9d09088cbc360afc0e0402d6dca5a8dac2
- SHA256
  
  c1eae8655ba2f8afc1fdba12f836ad4ba4d26057109b8f70519aba2b88c9b92b
- SHA512
  
  87bbf70f746b64191cb5075157a9de13852626d1cf49f85695da2ebc53d7712e4f6039f0aedda0842294bd670e14b43800b97e0c0acb9f3711a055e3feb6f5b0
- SSDEEP
  
  98304:r0w4bFKyOF2oGgYUIjn+xU9jzv/4hbznwSIFnRL:rp4RKElgY7n+kzva+R
Score

10^/10

ytstealer spyware stealer upx
- YTStealer
  YTStealer is a malware designed to steal YouTube authentication cookies.
  stealer ytstealer
- YTStealer payload
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Deletes itself
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

ytstealerspywarestealerupx

behavioral2

ytstealerspywarestealerupx

© 2018-2024

Terms | Privacy