stormkitty | 8c0cd3004f008a5d9466eb17d26aa3bd6a716deea4a4c6f050c3a88f260eda99 | Triage

Submit
Reports

Overview

overview

Static

static

XWorm V5.6...er.exe

windows10-2004-x64

7

Sharing

General

Target

XWorm V5.6.zip
Size

24.3MB
Sample

250120-wlvk9a1rdj
MD5

ac4c4f34b5a5f0bf5d278b3fd942c28e
SHA1

d4bac98c658913020d376ba214a66102b502fa43
SHA256

8c0cd3004f008a5d9466eb17d26aa3bd6a716deea4a4c6f050c3a88f260eda99
SHA512

1eb4fa333bcc98c06cf78baf13568253b5036c1395aa563ba38249ad2d5c9cba6744ae0292882f748545c4cd735619b873895a45d3bd5a46c3a5004dbc238237
SSDEEP

393216:Q2gszSnnHTrQWQD59U/p+HZZPz+NJWRL4UPBu+89YWOcC16kh0upLTLrD9dO3:nSnHTm59UhfJWRbPwYiC1euNrbO3

Score

10^/10

stormkitty xworm discovery

Static task

static1

stormkitty xworm

6 signatures

Behavioral task

behavioral1

Sample

XWorm V5.6/XwormLoader.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  XWorm V5.6/XwormLoader.exe
- Size
  
  576KB
- MD5
  
  f1a4c690564f491ad4f7fc8ce79e2fc3
- SHA1
  
  cc16274baae2af0c614566d56b693774fe892168
- SHA256
  
  0a3555b2ab1f76066c496eb43ebc520c82824a22cfcb714a75c5edc1ad99d88a
- SHA512
  
  f7a1116b889493c079000847f5517e9149d5dce703b85b1520ad1d4810c575500aab47460a6e0d7e266fa5ef70ba10d4b625587725251734404913844897e180
- SSDEEP
  
  12288:bwl4OwitTdBZpKfSTUNe/RhCEIX7RIiZmWJyGpfxd8KR0F7Br1dfPDWUw+b5/xgo:bwDdtTdBZISTACRhCE+Gi1yG
Score

7^/10

discovery
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

stormkittyxworm

behavioral1

© 2018-2025

Terms | Privacy