General

  • Target

    risky.exe

  • Size

    9.9MB

  • MD5

    8e98ffdc1269ea68319a89b585327227

  • SHA1

    6ac4b3a37b58c0e56429573c07e90257a00f1da6

  • SHA256

    a4ce5d9b88fad5b9decec2c2022fdd553fe405928a82fc4af1cfd64313392291

  • SHA512

    1941612b6b9d29fa388c3b7acc93bf59264552847a8707fa14b25833f5df5b918de01b7363810fd114f1f163362ad563cf098b681bd7f53bcc84e7710c4267ba

  • SSDEEP

    98304:UEwE0SGWvh+w+GmHwFrfsUZcs09elDSkE+B2v/ZmKzB:xwMNvh+wzp1BZcs0AlDSdhfzB

Score
10/10

Malware Config

Extracted

Family

skuld

C2

https://discord.com/api/webhooks/1299440617352593511/qhbhcLD0YnRVrIlfFnt-hXkHNFMoFb1ruaCfYTy0DW8d2M6jhoTR9JXcfjtXa0uUKj8O

Signatures

  • Skuld family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • risky.exe
    .exe windows:6 windows x64 arch:x64

    d42595b695fc008ef2c56aabd8efd68e


    Headers

    Imports

    Sections