General

  • Target

    slinky.exe

  • Size

    14.2MB

  • MD5

    5b9609530e3cb2dd1b86c43ebf4f9b25

  • SHA1

    60a9327fcb847b169d099c5a289223c2a3043560

  • SHA256

    3dbe2990bff79285935c181637d693c07e058837840aafe0b8c4d8eaac854ed1

  • SHA512

    b2c3c0b9f9b7b1f5360c5c75258f5116b2e88642c884bb90f8d79c502cbb07ce0b58497fafcf3b972c52b19d97571a50777dd198fc5d377e2c373c72d23b0b50

  • SSDEEP

    196608:4WJafoL/tUoTX4Z5bh1Yf0k7Ma/rkFlgdTaUrPPbdfw:4Wsfm/Ybh1lkSFCdTauZo

Score
10/10

Malware Config

Extracted

Family

skuld

C2

https://ptb.discord.com/api/webhooks/1267444280629133384/93lgPC5prxwm7kfEOYzZT9pM4aGa5M70dJhLbOvmKWx-H6EKIXoR_k1Z9HoM8VPO8jTA

Signatures

  • Skuld family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • slinky.exe
    .exe windows:6 windows x64 arch:x64

    c2d457ad8ac36fc9f18d45bffcd450c2


    Headers

    Imports

    Sections