isrstealer | 971bfb7229a9065a3ec091cd153e6fb3fc65a546fbeaf6b69eb21ebcb233be3e | Triage

Submit
Reports

Overview

overview

Static

static

971bfb7229...3e.exe

windows7-x64

971bfb7229...3e.exe

windows10-2004-x64

Sharing

General

Target

971bfb7229a9065a3ec091cd153e6fb3fc65a546fbeaf6b69eb21ebcb233be3e
Size

76KB
Sample

221021-z4ybmsgac6
MD5

6df7cae8f43f8043b185d520fb3360c0
SHA1

9043f279177150bd6aeeb4dc4f828134d3111b4f
SHA256

971bfb7229a9065a3ec091cd153e6fb3fc65a546fbeaf6b69eb21ebcb233be3e
SHA512

5f20d8cd2d996d53fe4ce3bae3e692d57ec7bd0cd1020d6c38eba70230ca267d42df109b2707531580a6d59a7752724cb63192a81a45ef9db9c27b4ceadddbde
SSDEEP

1536:Cz3HBexMQT+2umeWO2+FPx/lXYVAG8Zs7kfl/ig8OY:PxMQeXYVQsel/iwY

Score

10^/10

isrstealer spyware stealer trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

971bfb7229a9065a3ec091cd153e6fb3fc65a546fbeaf6b69eb21ebcb233be3e.exe

Resource

win7-20220812-en

isrstealer spyware stealer trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

971bfb7229a9065a3ec091cd153e6fb3fc65a546fbeaf6b69eb21ebcb233be3e.exe

Resource

win10v2004-20220812-en

isrstealer spyware stealer trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  971bfb7229a9065a3ec091cd153e6fb3fc65a546fbeaf6b69eb21ebcb233be3e
- Size
  
  76KB
- MD5
  
  6df7cae8f43f8043b185d520fb3360c0
- SHA1
  
  9043f279177150bd6aeeb4dc4f828134d3111b4f
- SHA256
  
  971bfb7229a9065a3ec091cd153e6fb3fc65a546fbeaf6b69eb21ebcb233be3e
- SHA512
  
  5f20d8cd2d996d53fe4ce3bae3e692d57ec7bd0cd1020d6c38eba70230ca267d42df109b2707531580a6d59a7752724cb63192a81a45ef9db9c27b4ceadddbde
- SSDEEP
  
  1536:Cz3HBexMQT+2umeWO2+FPx/lXYVAG8Zs7kfl/ig8OY:PxMQeXYVQsel/iwY
Score

10^/10

isrstealer spyware stealer trojan
- ISR Stealer
  ISR Stealer is a modified version of Hackhound Stealer written in visual basic.
  trojan stealer isrstealer
- Reads data files stored by FTP clients
  Tries to access configuration files associated with programs like FileZilla.
  spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

isrstealerspywarestealertrojan

behavioral2

isrstealerspywarestealertrojan

© 2018-2025

Terms | Privacy