Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

JaffaCakes...ba.exe

windows7-x64

10

JaffaCakes...ba.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_8e7f8155a6ab8221d08e84845d0d9eba

  • Size

    92KB

  • Sample

    250204-bsqweszpbx

  • MD5

    8e7f8155a6ab8221d08e84845d0d9eba

  • SHA1

    0430dc355748ef60811b985a8792cc15e9ead7d6

  • SHA256

    32a138c46072d8d2f8ccc76051e1d80ccaf827d18c535a51182674c6782d40f3

  • SHA512

    8b687cc9b7eb09343f38d5b5c19b2af49aa6e2d0c0c39e189c0bb527239e2360d30ada726df82ace95d968e0627a2cc537a9c98ad1c9c9eca054b33a9bde810e

  • SSDEEP

    1536:sBcBV9bgG3trrXduJG/R5BJ3BF/lAuDKzciDeAYsEUTIDw0LY75Lx/m:sCHBHXdu0/7L3DlpXueAfEUTIDwIY7hE

Score
10/10
isrstealerdiscoveryspywarestealertrojan

Malware Config

Targets

    • Target

      JaffaCakes118_8e7f8155a6ab8221d08e84845d0d9eba

    • Size

      92KB

    • MD5

      8e7f8155a6ab8221d08e84845d0d9eba

    • SHA1

      0430dc355748ef60811b985a8792cc15e9ead7d6

    • SHA256

      32a138c46072d8d2f8ccc76051e1d80ccaf827d18c535a51182674c6782d40f3

    • SHA512

      8b687cc9b7eb09343f38d5b5c19b2af49aa6e2d0c0c39e189c0bb527239e2360d30ada726df82ace95d968e0627a2cc537a9c98ad1c9c9eca054b33a9bde810e

    • SSDEEP

      1536:sBcBV9bgG3trrXduJG/R5BJ3BF/lAuDKzciDeAYsEUTIDw0LY75Lx/m:sCHBHXdu0/7L3DlpXueAfEUTIDwIY7hE

    Score
    10/10
    isrstealerdiscoveryspywarestealertrojan

    • ISR Stealer

      ISR Stealer is a modified version of Hackhound Stealer written in visual basic.

      trojanstealerisrstealer

    • ISR Stealer payload

    • Isrstealer family

      isrstealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads data files stored by FTP clients

      Tries to access configuration files associated with programs like FileZilla.

      spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.