Resubmissions

27-06-2024 17:02

240627-vj6eastapj 10

27-06-2024 16:59

240627-vhd9esshrn 7

General

  • Target

    SilverRat.exe

  • Size

    40KB

  • Sample

    240627-vj6eastapj

  • MD5

    e7cd0b7ac87904d319d01a6adabf71f4

  • SHA1

    750432be8e562cdc98babb73bc9261c81fa9a802

  • SHA256

    39d7726467f9ecdf9eac4e61ca9db7c8e302f2fe9b1c953cac8cd2db7e4a94e4

  • SHA512

    5c8f2705c3dfe2e82c343956119d9931e69309807496fbd42b917dc7a161ecf896fec8e9a2db8fdddffa1803bedadbe8157293a322cf81ce5caba3e7c695ae8d

  • SSDEEP

    768:4eCVJXgYwbRWfbG7vQocrZ4RUu9l5BTx/B6SIGgQkxUx6f:4e049cd4Gu9DofGghxUx6f

Score
10/10

Malware Config

Targets

    • Target

      SilverRat.exe

    • Size

      40KB

    • MD5

      e7cd0b7ac87904d319d01a6adabf71f4

    • SHA1

      750432be8e562cdc98babb73bc9261c81fa9a802

    • SHA256

      39d7726467f9ecdf9eac4e61ca9db7c8e302f2fe9b1c953cac8cd2db7e4a94e4

    • SHA512

      5c8f2705c3dfe2e82c343956119d9931e69309807496fbd42b917dc7a161ecf896fec8e9a2db8fdddffa1803bedadbe8157293a322cf81ce5caba3e7c695ae8d

    • SSDEEP

      768:4eCVJXgYwbRWfbG7vQocrZ4RUu9l5BTx/B6SIGgQkxUx6f:4e049cd4Gu9DofGghxUx6f

    Score
    10/10
    • StormKitty

      StormKitty is an open source info stealer written in C#.

    • StormKitty payload

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Matrix ATT&CK v13

Execution

Scheduled Task/Job

1
T1053

Scheduled Task

1
T1053.005

Persistence

Scheduled Task/Job

1
T1053

Scheduled Task

1
T1053.005

Privilege Escalation

Scheduled Task/Job

1
T1053

Scheduled Task

1
T1053.005

Discovery

System Information Discovery

3
T1082

Query Registry

3
T1012

Command and Control

Web Service

1
T1102

Tasks