General
-
Target
913c27a9d6e08e37f8fee60c6d5f424d8e220c930071baea68390aaa028ebc72.exe
-
Size
2.6MB
-
Sample
240923-brg7wssemq
-
MD5
2881d62826eb02ac92a022b2155e4007
-
SHA1
6f4f17a34a7c0d0511e417440f40eb6094fa7f11
-
SHA256
913c27a9d6e08e37f8fee60c6d5f424d8e220c930071baea68390aaa028ebc72
-
SHA512
a8b09aa3db334e8ab0c7a09749743979bd74e62457a997f3014357c852e6c6875f59dd8f1c09f62c5bb317f7a04f9dc31c9cdd24b2a56fee44c7d600b519010b
-
SSDEEP
49152:8PHN1/Gcsd7TY1vb6JxKrcETkA6RbsgoT2LsjGjxP5Dr5rAmskf7Wd:CHNNGcG7TY1vM/ETduQBT2LQGjbDrimc
Static task
static1
Behavioral task
behavioral1
Sample
913c27a9d6e08e37f8fee60c6d5f424d8e220c930071baea68390aaa028ebc72.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
913c27a9d6e08e37f8fee60c6d5f424d8e220c930071baea68390aaa028ebc72.exe
Resource
win10v2004-20240910-en
Malware Config
Targets
-
-
Target
913c27a9d6e08e37f8fee60c6d5f424d8e220c930071baea68390aaa028ebc72.exe
-
Size
2.6MB
-
MD5
2881d62826eb02ac92a022b2155e4007
-
SHA1
6f4f17a34a7c0d0511e417440f40eb6094fa7f11
-
SHA256
913c27a9d6e08e37f8fee60c6d5f424d8e220c930071baea68390aaa028ebc72
-
SHA512
a8b09aa3db334e8ab0c7a09749743979bd74e62457a997f3014357c852e6c6875f59dd8f1c09f62c5bb317f7a04f9dc31c9cdd24b2a56fee44c7d600b519010b
-
SSDEEP
49152:8PHN1/Gcsd7TY1vb6JxKrcETkA6RbsgoT2LsjGjxP5Dr5rAmskf7Wd:CHNNGcG7TY1vM/ETduQBT2LQGjbDrimc
Score10/10-
StormKitty payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates processes with tasklist
-