Overview

overview

10

Static

static

10

a086fb4150...a1.exe

windows7-x64

10

a086fb4150...a1.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a086fb4150e6186e53bb22819573f3739a934a2074dbc49578b559b4f7a492a1

  • Size

    228KB

  • Sample

    221020-2tbe8shhhn

  • MD5

    6756d993d92840e150f1e2048129dd04

  • SHA1

    6a093a18953c6d5caddb07b1abf38fa426a1446a

  • SHA256

    a086fb4150e6186e53bb22819573f3739a934a2074dbc49578b559b4f7a492a1

  • SHA512

    2681ce30f9beaeeb927d44ff4667fafdb182aa863e8d7830182c8da704bb8a013ff39bfab10517642d6d998687a59f5512bf3b3aaa004dbfc763db9245ae5024

  • SSDEEP

    6144:s3bdXPx3BdIKCC0ef//uXltKc+LVsz9b8RTJ:6BdFeCXuLKcCVsz6

Score
10/10
isrstealerspywarestealertrojanupx

Malware Config

Targets

    • Target

      a086fb4150e6186e53bb22819573f3739a934a2074dbc49578b559b4f7a492a1

    • Size

      228KB

    • MD5

      6756d993d92840e150f1e2048129dd04

    • SHA1

      6a093a18953c6d5caddb07b1abf38fa426a1446a

    • SHA256

      a086fb4150e6186e53bb22819573f3739a934a2074dbc49578b559b4f7a492a1

    • SHA512

      2681ce30f9beaeeb927d44ff4667fafdb182aa863e8d7830182c8da704bb8a013ff39bfab10517642d6d998687a59f5512bf3b3aaa004dbfc763db9245ae5024

    • SSDEEP

      6144:s3bdXPx3BdIKCC0ef//uXltKc+LVsz9b8RTJ:6BdFeCXuLKcCVsz6

    Score
    10/10
    isrstealerspywarestealertrojanupx

    • ISR Stealer

      ISR Stealer is a modified version of Hackhound Stealer written in visual basic.

      trojanstealerisrstealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks