Overview

overview

10

Static

static

10

venome otp...ip.dll

windows7-x64

1

venome otp...ip.dll

windows10-2004-x64

1

venome otp...ol.dll

windows7-x64

1

venome otp...ol.dll

windows10-2004-x64

1

venome otp...ET.dll

windows7-x64

1

venome otp...ET.dll

windows10-2004-x64

1

venome otp...on.dll

windows7-x64

1

venome otp...on.dll

windows10-2004-x64

1

venome otp...te.dll

windows7-x64

1

venome otp...te.dll

windows10-2004-x64

1

venome otp...on.dll

windows7-x64

3

venome otp...on.dll

windows10-2004-x64

3

venome otp...ds.dll

windows7-x64

1

venome otp...ds.dll

windows10-2004-x64

1

venome otp...OT.exe

windows7-x64

10

venome otp...OT.exe

windows10-2004-x64

10

venome otp...et.dll

windows7-x64

1

venome otp...et.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    venome OTP BOT.rar

  • Size

    148.4MB

  • MD5

    663d68eff9295c6bf8bab560885602e5

  • SHA1

    f29fcf32a1bc8259f1bba4ac54508b0873f227d5

  • SHA256

    6c303c36c48e2ad0c03eea089525a959f9d90e9df05544c5dc8ae499bea8cfe7

  • SHA512

    f76ae13dc6dcbe814fd9f42626518207818e7e6467efe8209a6d2fb2cf2b6f3caea886612289d4dc9616c9efc5f7f73231fc8249a590b44e0f235a2836783dd3

  • SSDEEP

    3145728:E8jJRp/YRMb4d+x0DqKJBcJQcjsem2TkoFAlWw2SNQpHgqAkjS:tjrs+Bxj02BFA4w32dAkjS

Score
10/10
stormkitty

Malware Config

Signatures

  • StormKitty payload 1 IoCs
  • Stormkitty family
    stormkitty
  • Unsigned PE 8 IoCs

    Checks for missing Authenticode signature.

Files

  • venome OTP BOT.rar
    .rar
  • venome otp BOT/OTP BOT/.hackus/serverdatabase.db
  • venome otp BOT/OTP BOT/DotNetZip.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • venome otp BOT/OTP BOT/HandyControl.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • venome otp BOT/OTP BOT/MailBee.NET.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • venome otp BOT/OTP BOT/Newtonsoft.Json.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • venome otp BOT/OTP BOT/System.Data.SQLite.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • venome otp BOT/OTP BOT/System.Windows.Controls.Ribbon.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • venome otp BOT/OTP BOT/ToolGood.Words.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • venome otp BOT/OTP BOT/venome OTP BOT.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • venome otp BOT/OTP BOT/xNet.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections