stormkitty | 302dd23d469643215e54a187e4127b50df5bbcdef4c5924193dc6815ba5c2e34 | Triage

Submit
Reports

Overview

overview

Static

static

HEUR-Troja...er.exe

windows7-x64

HEUR-Troja...er.exe

windows10-1703-x64

HEUR-Troja...er.exe

windows10-2004-x64

HEUR-Troja...er.exe

windows11-21h2-x64

Sharing

General

Target

HEUR-Trojan-PSW.MSIL.Stealer.gen-302dd23d469643215e54a187e4127b50df5bbcdef4c5924193dc6815ba5c2e34
Size

117KB
Sample

240416-w35sjshc88
MD5

4c4f07c6d9f0b73193ddd3406201e900
SHA1

4786a21d01abbe48fbb0e3943aa43366200d8ef4
SHA256

302dd23d469643215e54a187e4127b50df5bbcdef4c5924193dc6815ba5c2e34
SHA512

dbc27b759dd275465027d0079d924ad203c2a09cf5e073c9134962a3c38ccd434798392c9218cec7ea532adccf70916fa69e866aa6425f3cd38f064cece645ae
SSDEEP

3072:daOqc4zX7NtM0NN7Uj2D9bW0YBDrUbpODw4:rF4zX7NlYjg9ba

Score

10^/10

stormkitty stealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

HEUR-Trojan-PSW.MSIL.Stealer.exe

Resource

win7-20240220-en

stormkitty stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

HEUR-Trojan-PSW.MSIL.Stealer.exe

Resource

win10-20240404-en

stormkitty stealer

windows10-1703-x64

4 signatures

150 seconds

Behavioral task

behavioral3

Sample

HEUR-Trojan-PSW.MSIL.Stealer.exe

Resource

win10v2004-20240412-en

stormkitty stealer

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral4

Sample

HEUR-Trojan-PSW.MSIL.Stealer.exe

Resource

win11-20240412-en

stormkitty stealer

windows11-21h2-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  HEUR-Trojan-PSW.MSIL.Stealer.gen-302dd23d469643215e54a187e4127b50df5bbcdef4c5924193dc6815ba5c2e34
- Size
  
  117KB
- MD5
  
  4c4f07c6d9f0b73193ddd3406201e900
- SHA1
  
  4786a21d01abbe48fbb0e3943aa43366200d8ef4
- SHA256
  
  302dd23d469643215e54a187e4127b50df5bbcdef4c5924193dc6815ba5c2e34
- SHA512
  
  dbc27b759dd275465027d0079d924ad203c2a09cf5e073c9134962a3c38ccd434798392c9218cec7ea532adccf70916fa69e866aa6425f3cd38f064cece645ae
- SSDEEP
  
  3072:daOqc4zX7NtM0NN7Uj2D9bW0YBDrUbpODw4:rF4zX7NlYjg9ba
Score

10^/10

stormkitty stealer
- StormKitty
  StormKitty is an open source info stealer written in C#.
  stealer stormkitty
- StormKitty payload
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

stormkittystealer

behavioral2

stormkittystealer

behavioral3

stormkittystealer

behavioral4

stormkittystealer

© 2018-2024

Terms | Privacy