stormkitty | a477aca2a30817273c6422a7378a28d7e1e46d13e99a8f84b978ef126cefa375 | Triage

Submit
Reports

Overview

overview

Static

static

XWorm V5.3.7z

windows10-ltsc_2021-x64

7

Resubmissions

28/03/2025, 18:47

250328-xffqks1qx4 10

27/03/2025, 23:25

250327-3ea2la1rv5 10

Sharing

General

Target

XWorm V5.3.7z
Size

29.5MB
Sample

250327-3ea2la1rv5
MD5

9beb9885ff45fafcd599daa6878c6298
SHA1

2f99bb2e16eb4140b96248d7092b6cf466afb1ab
SHA256

a477aca2a30817273c6422a7378a28d7e1e46d13e99a8f84b978ef126cefa375
SHA512

20c8a67c24a9b0a0e88f204b77d8cf40707f41115237b55cf1b6be01e0681f93256fadb84913323cbe0413e3d2d49a1058dd254c99c8f979a37705cdd6165062
SSDEEP

786432:JfWIbeWlM/KrzeqOY0NoevqMlnkvlA/oUpxvgaRA+Xl7uPCZ6:JWICWVrDOHNooqMtkWwytlaA6

Score

10^/10

stormkitty agilenet

Static task

static1

agilenet stormkitty

5 signatures

Behavioral task

behavioral1

Sample

XWorm V5.3.7z

Resource

win10ltsc2021-20250314-en

windows10-ltsc_2021-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  XWorm V5.3.7z
- Size
  
  29.5MB
- MD5
  
  9beb9885ff45fafcd599daa6878c6298
- SHA1
  
  2f99bb2e16eb4140b96248d7092b6cf466afb1ab
- SHA256
  
  a477aca2a30817273c6422a7378a28d7e1e46d13e99a8f84b978ef126cefa375
- SHA512
  
  20c8a67c24a9b0a0e88f204b77d8cf40707f41115237b55cf1b6be01e0681f93256fadb84913323cbe0413e3d2d49a1058dd254c99c8f979a37705cdd6165062
- SSDEEP
  
  786432:JfWIbeWlM/KrzeqOY0NoevqMlnkvlA/oUpxvgaRA+Xl7uPCZ6:JWICWVrDOHNooqMtkWwytlaA6
Score

7^/10

agilenet
- Executes dropped EXE
- Loads dropped DLL
- Obfuscated with Agile.Net obfuscator
  Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
  agilenet
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

agilenetstormkitty

behavioral1

© 2018-2025

Terms | Privacy