isrstealer | 3a53eda9346ab154e6b4e6ed65dda380bef32eb0a42e28ef541cbd47ceb7a433 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

JaffaCakes...17.exe

windows7-x64

JaffaCakes...17.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_500464ffcc8e1ad67ccf9422d1d60b17
Size

306KB
Sample

250305-cjxs2svybv
MD5

500464ffcc8e1ad67ccf9422d1d60b17
SHA1

752857b8dceffc1e7fd5e626b27445662a08beec
SHA256

3a53eda9346ab154e6b4e6ed65dda380bef32eb0a42e28ef541cbd47ceb7a433
SHA512

da9ac7ac0f424b84b195d09d2f552583866110058da692518327419bc419faa87f2207a72988aa0837fdc9eecb4bd59e8e19c98be5dd9d2f0ed572a19a219f9d
SSDEEP

6144:cvUdSIJJXhy4dlUnxjWY/lLngffHKOH46bnVjeTtF:cvULJXhxUJYlHFbnVatF

Score

10^/10

isrstealer discovery stealer trojan upx

Static task

static1

Behavioral task

behavioral1

Sample

JaffaCakes118_500464ffcc8e1ad67ccf9422d1d60b17.exe

Resource

win7-20240903-en

isrstealer discovery stealer trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_500464ffcc8e1ad67ccf9422d1d60b17.exe

Resource

win10v2004-20250217-en

isrstealer discovery stealer trojan upx

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_500464ffcc8e1ad67ccf9422d1d60b17
- Size
  
  306KB
- MD5
  
  500464ffcc8e1ad67ccf9422d1d60b17
- SHA1
  
  752857b8dceffc1e7fd5e626b27445662a08beec
- SHA256
  
  3a53eda9346ab154e6b4e6ed65dda380bef32eb0a42e28ef541cbd47ceb7a433
- SHA512
  
  da9ac7ac0f424b84b195d09d2f552583866110058da692518327419bc419faa87f2207a72988aa0837fdc9eecb4bd59e8e19c98be5dd9d2f0ed572a19a219f9d
- SSDEEP
  
  6144:cvUdSIJJXhy4dlUnxjWY/lLngffHKOH46bnVjeTtF:cvULJXhxUJYlHFbnVatF
Score

10^/10

isrstealer discovery stealer trojan upx
- ISR Stealer
  ISR Stealer is a modified version of Hackhound Stealer written in visual basic.
  trojan stealer isrstealer
- ISR Stealer payload
- Isrstealer family
  isrstealer
- Suspicious use of SetThreadContext
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

isrstealerdiscoverystealertrojan

behavioral2

isrstealerdiscoverystealertrojanupx

© 2018-2025

Terms | Privacy