General

  • Target

    20240921e40540ec1ae5f6f29562bcee41d86514ngrbotpoetratsnatch

  • Size

    9.9MB

  • MD5

    e40540ec1ae5f6f29562bcee41d86514

  • SHA1

    de2256ee25869cc17283b307419037627cb78d0f

  • SHA256

    389d4b7407f3c4a4e60db0f9dcd65db4a4b01f1456d46f1ffd7076245363e5eb

  • SHA512

    5ffdd9a503d730cdf3be7d120a6b5668fc1dca02fe309ebdde25e4c50cbe1efdf8d5342643c840d273d3790ef68c5409f9267d9b2a03ff5052c765ad00d6ff10

  • SSDEEP

    98304:EQI9wzKxmhMIIKfGTibiyCC9cK84E2ICafZmwjsEejd:EIzKxmhhtbiyCicRxDUjd

Score
10/10

Malware Config

Extracted

Family

skuld

C2

https://discord.com/api/webhooks/1285211810575945748/7J56-mrYbT4xW_T7mwdYVFRu4jezQ7Voai19n9-SJZi7A-Ont1vUy_Sxi22zocvfoEiY

Signatures

  • Skuld family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 20240921e40540ec1ae5f6f29562bcee41d86514ngrbotpoetratsnatch
    .exe windows:6 windows x64 arch:x64

    d42595b695fc008ef2c56aabd8efd68e


    Headers

    Imports

    Sections