Overview

overview

10

Static

static

10

NIGAS.exe

windows7-x64

10

NIGAS.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NIGAS.exe

  • Size

    83KB

  • MD5

    edd3be97416fa1a1a395aead8e35b64f

  • SHA1

    db7df2354b98c552e5152e2ec254d7d8123bbd93

  • SHA256

    2ab7328e0e55d787d1a6d367571b770ccd3bc92255d17b5508a85ec95210ca5e

  • SHA512

    0de5620cc4c39cba9befaf74f8590ac15243ff6fbae2bf0b5467e662b693eac9661fbc85462c17849ab7a021e4745e6038c09b31a3b10fc065fed437ad513098

  • SSDEEP

    1536:/AMfrTX01OrGpRZNdbv66Claewnph6Nu/FJdVzCY+o2owx3TE4Sf9bcNZgxj0kO9:6DewnphDFEOls3TOf9bagh0kOe4

Score
10/10
stormkitty

Malware Config

Signatures

  • Contains code to disable Windows Defender 1 IoCs

    A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.

  • StormKitty payload 1 IoCs
  • Stormkitty family
    stormkitty

Files

  • NIGAS.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections