skuld | 9d3450654a220be707d94d521ce7d92918c30efbc7fcf3d1f37c5c35cbf2c488 | Triage

Sharing

General

Target

2024-12-01_174343d57d6be59336d4a85747daba26_frostygoop_luca-stealer_ngrbot_poet-rat_snatch
Size

14.8MB
Sample

241201-3qetxssrek
MD5

174343d57d6be59336d4a85747daba26
SHA1

33e77846eb2cc8ac1c837cc0d17a5f5283503d3c
SHA256

9d3450654a220be707d94d521ce7d92918c30efbc7fcf3d1f37c5c35cbf2c488
SHA512

21114b88a164955895b54a154d9c33240bfb7b7f4dc64630ebbf4948495006e7991a10b71508d8205c3feb2ce3b0777a968fe875ebf4f18cf931b331853f9ad0
SSDEEP

196608:FcENZWneNHxLPPz6Kvzhqog+F48TmcFkBzNZIomm8p:FciZgCh6iq2F48TdFuzNKS8

Score

10^/10

skuld persistence

Malware Config

Targets

- Target
  
  2024-12-01_174343d57d6be59336d4a85747daba26_frostygoop_luca-stealer_ngrbot_poet-rat_snatch
- Size
  
  14.8MB
- MD5
  
  174343d57d6be59336d4a85747daba26
- SHA1
  
  33e77846eb2cc8ac1c837cc0d17a5f5283503d3c
- SHA256
  
  9d3450654a220be707d94d521ce7d92918c30efbc7fcf3d1f37c5c35cbf2c488
- SHA512
  
  21114b88a164955895b54a154d9c33240bfb7b7f4dc64630ebbf4948495006e7991a10b71508d8205c3feb2ce3b0777a968fe875ebf4f18cf931b331853f9ad0
- SSDEEP
  
  196608:FcENZWneNHxLPPz6Kvzhqog+F48TmcFkBzNZIomm8p:FciZgCh6iq2F48TdFuzNKS8
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2