Overview

overview

10

Static

static

10

stub.exe

windows7-x64

10

stub.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    stub.exe

  • Size

    107KB

  • Sample

    250218-zlz3hsypfj

  • MD5

    eaa8de841b67c55c023f66729791a0d7

  • SHA1

    1c6ebfb9a9bfa35dfd698876433ae521513fca81

  • SHA256

    1eb1ec2ae87071342c03080d209fd4983c793204a88772187c7f764c4f4118fe

  • SHA512

    6fff0b607ed1d29344acdd85b7d4b5e64cfc03b3ad9fc9bb9fca64ccf9021d527b78f6417fd811385c37cd5905b56e03793175c37f84878ad483d0edaede92ac

  • SSDEEP

    3072:X2ZYhX5B/BrwRlilIEtBeQ7sR9bGpxRBU6pY2z:fhX5e4l5e8u9bY

Score
10/10
stormkittystealer

Malware Config

Targets

    • Target

      stub.exe

    • Size

      107KB

    • MD5

      eaa8de841b67c55c023f66729791a0d7

    • SHA1

      1c6ebfb9a9bfa35dfd698876433ae521513fca81

    • SHA256

      1eb1ec2ae87071342c03080d209fd4983c793204a88772187c7f764c4f4118fe

    • SHA512

      6fff0b607ed1d29344acdd85b7d4b5e64cfc03b3ad9fc9bb9fca64ccf9021d527b78f6417fd811385c37cd5905b56e03793175c37f84878ad483d0edaede92ac

    • SSDEEP

      3072:X2ZYhX5B/BrwRlilIEtBeQ7sR9bGpxRBU6pY2z:fhX5e4l5e8u9bY

    Score
    10/10
    stormkittystealer

    • StormKitty

      StormKitty is an open source info stealer written in C#.

      stealerstormkitty

    • StormKitty payload

    • Stormkitty family

      stormkitty

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks