stormkitty | e407a948340cdfcd470f25d6a891864e2aea65f06d007cc9d7bd4893b0682319 | Triage

Resubmissions

22-02-2025 06:08

250222-gv1rasyrdx 10

22-02-2025 06:02

250222-grpvmayqgx 10

22-02-2025 05:46

250222-ggbj9aypbv 10

Sharing

General

Target

xworm5.6_3_1.rar
Size

20.9MB
Sample

250222-grpvmayqgx
MD5

fdbb726bb80ec771b3296a715153d518
SHA1

818f734ecfa2b86d06d0154db2aeb3ace92b2283
SHA256

e407a948340cdfcd470f25d6a891864e2aea65f06d007cc9d7bd4893b0682319
SHA512

b6f79f8e3182113efb6c8fb246f3bf149991a7e2255d6417d19dd478e681c08d8c3ad97d500a43609eb0dbcf5777daf58df5920e00aa40c516d5b1e46f8b3608
SSDEEP

393216:PV10n8N0/c2lDGdlMVSGpomu8u5E/ZsiLh5UirAxl9YVjxWiqcrOsb:PQn8N002A6IGS5E/RTrA89WiX9b

Score

10^/10

stormkitty xworm

Malware Config

Targets

- Target
  
  Xworm-V5.6/Plugins/Stealer.dll
- Size
  
  3.3MB
- MD5
  
  ade4edd66bc695c9465816fa2538d0cb
- SHA1
  
  e4351a2531307c848c60b20ffb50bcc04156fdbc
- SHA256
  
  018e06f57725563e4525700edffafb1b062bf5d4b0e9fee498507f0f8200fcdf
- SHA512
  
  e2bf3962787366d7a975eb55d2edd1fe35935205febc00f720dc0efff0c62b5df7f0207fd569f692205e8a227c059eea596904995855458e9c02306842e88a6f
- SSDEEP
  
  49152:eVbwgxmbsO2B7wKOfpUL6GbriHeGAb4TkyNejjWSqE08:eVbFxmbsO2B7wKOxTSf
Score

1^/10
behavioral1 behavioral2
- Target
  
  Xworm-V5.6/Plugins/UACBypass.dll
- Size
  
  10KB
- MD5
  
  158e789d0b6cbc52fcb6653fefca38f9
- SHA1
  
  4e913315dc3d69abe2be5e5b3a5d37b5f49f7deb
- SHA256
  
  ebd51f1e33673cb8e55f10aa890a04027d62b1c1c0b0ae9b1d6f83f1602f53a2
- SHA512
  
  23243daadbad2f68b6ed6720d5792226f9c2aeb0b14cf3bf24ac54dcb7a2aa4aff9d26a5633d3add0d871e4ec65c230752c7c173cc4a4374f9263e2c46f9977a
- SSDEEP
  
  192:kcq0WYKDFxDviOGOko8bZfmgyOYkIW1UZ/Xvjljw2ugiSL20V:kntNFxOrE8bLyOYBZ/XTugU0V
Score

1^/10
behavioral3 behavioral4
- Target
  
  Xworm-V5.6/Xworm V5.6.exe
- Size
  
  14.9MB
- MD5
  
  56ccb739926a725e78a7acf9af52c4bb
- SHA1
  
  5b01b90137871c3c8f0d04f510c4d56b23932cbc
- SHA256
  
  90f58865f265722ab007abb25074b3fc4916e927402552c6be17ef9afac96405
- SHA512
  
  2fee662bc4a1a36ce7328b23f991fa4a383b628839e403d6eb6a9533084b17699a6c939509867a86e803aafef2f9def98fa9305b576dad754aa7f599920c19a1
- SSDEEP
  
  196608:P4/BAe1d4ihvy85JhhYc3BSL1kehn4inje:PuyIhhkRka4i
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

stormkittyxworm

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6