Overview

overview

10

Static

static

10

cmd.exe

windows11-21h2-x64

10

cmd.exe

windows10-2004-x64

10

cmd.exe

windows10-ltsc_2021-x64

10

cmd.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cmd.exe

  • Size

    339KB

  • Sample

    250331-wnxtdsxms6

  • MD5

    4a78d40c29579dc26ba135c01ac56158

  • SHA1

    9c61028daf68777bbb0671036417f093078ca1d7

  • SHA256

    23600c9b4425c2cc05a8e17adc39e6fa8c0c16983289abf2b4cae68ae6535b3b

  • SHA512

    ada8df846dd8d0a6706b3bb0e4f5ba43f84e8ef634ac7d10370ec118537c7b33d8ce4a3e680a8d2a6593b87531819f3cfdb1cf1291ac7d2589707fc6fa0e7969

  • SSDEEP

    3072:+m+FrFLPdIuW/cRdyYZ2r1J0ZNk5TP8VveGX5If5V8KBA2Rtml6cBLV4adiQLeIc:P+FrFPWv/eFZNk5L8V/iBV8yIRR4sOEq

Score
10/10
stormkittyspywarestealer

Malware Config

Targets

    • Target

      cmd.exe

    • Size

      339KB

    • MD5

      4a78d40c29579dc26ba135c01ac56158

    • SHA1

      9c61028daf68777bbb0671036417f093078ca1d7

    • SHA256

      23600c9b4425c2cc05a8e17adc39e6fa8c0c16983289abf2b4cae68ae6535b3b

    • SHA512

      ada8df846dd8d0a6706b3bb0e4f5ba43f84e8ef634ac7d10370ec118537c7b33d8ce4a3e680a8d2a6593b87531819f3cfdb1cf1291ac7d2589707fc6fa0e7969

    • SSDEEP

      3072:+m+FrFLPdIuW/cRdyYZ2r1J0ZNk5TP8VveGX5If5V8KBA2Rtml6cBLV4adiQLeIc:P+FrFPWv/eFZNk5L8V/iBV8yIRR4sOEq

    Score
    10/10
    stormkittyspywarestealer

    • StormKitty

      StormKitty is an open source info stealer written in C#.

      stealerstormkitty

    • StormKitty payload

    • Stormkitty family

      stormkitty

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware
    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks