isrstealer | b14bdd109476eaa953a82b4b84b986c51f0a54b191456a2fade24440e290949b | Triage

Submit
Reports

Overview

overview

Static

static

3

8ed0a912c2...85.exe

windows7-x64

8ed0a912c2...85.exe

windows10-2004-x64

Sharing

General

Target

8ed0a912c2804f163918c6f99a5f3f85
Size

284KB
Sample

240204-lky7yaech8
MD5

8ed0a912c2804f163918c6f99a5f3f85
SHA1

55115fed0538e4f5c71a7c669c0e0ccbc1edf262
SHA256

b14bdd109476eaa953a82b4b84b986c51f0a54b191456a2fade24440e290949b
SHA512

9dc420a843031d6d8c493f55e5d2240291b838f5490c680591371baeb250165aa89559cd1d2cad6d52523ce29dcdd674a881bff93f4d2741d49d91c564a47063
SSDEEP

6144:b9g7tPq72R2PkhgulFe7H8qDSJ12PYOCpGG+:S7txcMCulF0VDSvMOAG

Score

10^/10

isrstealer spyware stealer trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8ed0a912c2804f163918c6f99a5f3f85.exe

Resource

win7-20231215-en

isrstealer spyware stealer trojan upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

8ed0a912c2804f163918c6f99a5f3f85.exe

Resource

win10v2004-20231215-en

isrstealer spyware stealer trojan upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  8ed0a912c2804f163918c6f99a5f3f85
- Size
  
  284KB
- MD5
  
  8ed0a912c2804f163918c6f99a5f3f85
- SHA1
  
  55115fed0538e4f5c71a7c669c0e0ccbc1edf262
- SHA256
  
  b14bdd109476eaa953a82b4b84b986c51f0a54b191456a2fade24440e290949b
- SHA512
  
  9dc420a843031d6d8c493f55e5d2240291b838f5490c680591371baeb250165aa89559cd1d2cad6d52523ce29dcdd674a881bff93f4d2741d49d91c564a47063
- SSDEEP
  
  6144:b9g7tPq72R2PkhgulFe7H8qDSJ12PYOCpGG+:S7txcMCulF0VDSvMOAG
Score

10^/10

isrstealer spyware stealer trojan upx
- ISR Stealer
  ISR Stealer is a modified version of Hackhound Stealer written in visual basic.
  trojan stealer isrstealer
- ISR Stealer payload
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

isrstealerspywarestealertrojanupx

behavioral2

isrstealerspywarestealertrojanupx

© 2018-2024

Terms | Privacy