isrstealer | 3ff8b87a187259c7223e79c8cae7cd5c39760333043ebf525d4bc41e9bb7cb85 | Triage

Submit
Reports

Overview

overview

Static

static

07304fba8c...01.exe

windows7-x64

7

07304fba8c...01.exe

windows10-2004-x64

7

Sharing

General

Target

07304fba8cb3d35bdf4ffc54059e4901
Size

208KB
Sample

231229-3m9vwsbdb7
MD5

07304fba8cb3d35bdf4ffc54059e4901
SHA1

9249bbaf4490fa818d32699ff72bde5cdb7dffe3
SHA256

3ff8b87a187259c7223e79c8cae7cd5c39760333043ebf525d4bc41e9bb7cb85
SHA512

b160534466b480f9531961d9fd666b6930f12d4811dd863f393e16e87b5b4be0161d38adf6e74cc1d971a538f4ddddad9a8e6a5039c4fbcf670f929646d9856e
SSDEEP

6144:H3bdXPx3kdIKCC0ef//uXltKc+LVsz9b8:PkdFeCXuLKcCVsz6

Score

10^/10

isrstealer spyware stealer upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

07304fba8cb3d35bdf4ffc54059e4901.exe

Resource

win7-20231215-en

spyware stealer upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

07304fba8cb3d35bdf4ffc54059e4901.exe

Resource

win10v2004-20231215-en

spyware stealer upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  07304fba8cb3d35bdf4ffc54059e4901
- Size
  
  208KB
- MD5
  
  07304fba8cb3d35bdf4ffc54059e4901
- SHA1
  
  9249bbaf4490fa818d32699ff72bde5cdb7dffe3
- SHA256
  
  3ff8b87a187259c7223e79c8cae7cd5c39760333043ebf525d4bc41e9bb7cb85
- SHA512
  
  b160534466b480f9531961d9fd666b6930f12d4811dd863f393e16e87b5b4be0161d38adf6e74cc1d971a538f4ddddad9a8e6a5039c4fbcf670f929646d9856e
- SSDEEP
  
  6144:H3bdXPx3kdIKCC0ef//uXltKc+LVsz9b8:PkdFeCXuLKcCVsz6
Score

7^/10

spyware stealer upx
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

spywarestealerupx

behavioral2

spywarestealerupx

© 2018-2024

Terms | Privacy