General
-
Target
6d5b241043003790a1396d98beeec8f692fc92f5dd7ff3a01602947bb58c4cd7
-
Size
996KB
-
Sample
221125-vfyv2sbf46
-
MD5
e13e4b2ed746d1034641b76680c99e86
-
SHA1
c106206e42295af01dc6cf03e9989c61cd4953ec
-
SHA256
6d5b241043003790a1396d98beeec8f692fc92f5dd7ff3a01602947bb58c4cd7
-
SHA512
35cffda263c72992859acd5f92890b5cada28ac241963de3146b16de640c93379503d48baaad88fceb1e098208626f7685486da289a506ffad008ececf5257f9
-
SSDEEP
12288:uaWzgMg7v3qnCiMErQohh0F4CCJ8lny/Qg3rjtOnrZsWz3OWvOnbxR9rvsOrm:ZaHMv6Corjqny/Qgbj0SQOb/psOrm
Static task
static1
Behavioral task
behavioral1
Sample
6d5b241043003790a1396d98beeec8f692fc92f5dd7ff3a01602947bb58c4cd7.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
6d5b241043003790a1396d98beeec8f692fc92f5dd7ff3a01602947bb58c4cd7.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
6d5b241043003790a1396d98beeec8f692fc92f5dd7ff3a01602947bb58c4cd7
-
Size
996KB
-
MD5
e13e4b2ed746d1034641b76680c99e86
-
SHA1
c106206e42295af01dc6cf03e9989c61cd4953ec
-
SHA256
6d5b241043003790a1396d98beeec8f692fc92f5dd7ff3a01602947bb58c4cd7
-
SHA512
35cffda263c72992859acd5f92890b5cada28ac241963de3146b16de640c93379503d48baaad88fceb1e098208626f7685486da289a506ffad008ececf5257f9
-
SSDEEP
12288:uaWzgMg7v3qnCiMErQohh0F4CCJ8lny/Qg3rjtOnrZsWz3OWvOnbxR9rvsOrm:ZaHMv6Corjqny/Qgbj0SQOb/psOrm
Score10/10-
ISR Stealer
ISR Stealer is a modified version of Hackhound Stealer written in visual basic.
-
ISR Stealer payload
-
NirSoft MailPassView
Password recovery tool for various email clients
-
Nirsoft
-
Accesses Microsoft Outlook accounts
-
Suspicious use of SetThreadContext
-