blustealer | dfd1179ad73ebb13661fe68ec9276f503563ec578c20c1e6489e2d3666deb4cb | Triage

Submit
Reports

Overview

overview

Static

static

Swift.txt.exe

windows7-x64

Swift.txt.exe

windows10-2004-x64

Sharing

General

Target

Swift.txt.exe
Size

670KB
Sample

220803-mghw8aaae4
MD5

2de023032f1f87a7ed648c32fcf484df
SHA1

17be3627191cd82331a205cd3eca02380d541aba
SHA256

dfd1179ad73ebb13661fe68ec9276f503563ec578c20c1e6489e2d3666deb4cb
SHA512

0a628ebde05eb454fbbb3898b166830d98e7bc0862bbc0ef3e55ace668604c4eabd607d6012608a3a465a2dc5e7aaf9f8e778fd1ae61feacdc9542f78069bed5

Score

10^/10

blustealer stormkitty collection stealer

Static task

static1

Behavioral task

behavioral1

Sample

Swift.txt.exe

Resource

win7-20220718-en

blustealer stormkitty collection stealer

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

Swift.txt.exe

Resource

win10v2004-20220722-en

blustealer stormkitty collection stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  Swift.txt.exe
- Size
  
  670KB
- MD5
  
  2de023032f1f87a7ed648c32fcf484df
- SHA1
  
  17be3627191cd82331a205cd3eca02380d541aba
- SHA256
  
  dfd1179ad73ebb13661fe68ec9276f503563ec578c20c1e6489e2d3666deb4cb
- SHA512
  
  0a628ebde05eb454fbbb3898b166830d98e7bc0862bbc0ef3e55ace668604c4eabd607d6012608a3a465a2dc5e7aaf9f8e778fd1ae61feacdc9542f78069bed5
Score

10^/10

blustealer stormkitty collection stealer
- BluStealer
  A Modular information stealer written in Visual Basic.
  stealer blustealer
- StormKitty
  StormKitty is an open source info stealer written in C#.
  stealer stormkitty
- StormKitty payload
- Accesses Microsoft Outlook profiles
  collection
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blustealerstormkittycollectionstealer

behavioral2

blustealerstormkittycollectionstealer

© 2018-2025

Terms | Privacy