skuld | b2b506445227e8b041fde5586c25c052ba56c1f3679fb5aa63a9451b45af6c9d | Triage

Sharing

General

Target

skuld.exe
Size

9.3MB
Sample

250101-wxaefsxjew
MD5

d59bbfa4567d5967e30e304f6e607b6a
SHA1

887907ff94790cf8e5cf813dbb830c562773ac34
SHA256

b2b506445227e8b041fde5586c25c052ba56c1f3679fb5aa63a9451b45af6c9d
SHA512

2ab8eea94a2b4cf7c689934f3b91acfc1376b97011dcca5a9f2098296e1c129fee7803fb8cd9bb82a1d1f78fabc6636818cd14d42752c5ed566de7921f530ab1
SSDEEP

98304:vVtviy75XQUbnfGtgar62ONHyNZ8AEpWfEEkSMf:9M25XQUbnuONHyD85Auf

Score

10^/10

skuld persistence

Malware Config

Extracted

Family

skuld

C2

https://discord.com/api/webhooks/1321806664902508596/I9Wsip7unC3IdokgB5uh1PHku5sHmASMG6sY7YXaLQcrMwjxYg31sILR_BYJW3cfbNoI

Targets

- Target
  
  skuld.exe
- Size
  
  9.3MB
- MD5
  
  d59bbfa4567d5967e30e304f6e607b6a
- SHA1
  
  887907ff94790cf8e5cf813dbb830c562773ac34
- SHA256
  
  b2b506445227e8b041fde5586c25c052ba56c1f3679fb5aa63a9451b45af6c9d
- SHA512
  
  2ab8eea94a2b4cf7c689934f3b91acfc1376b97011dcca5a9f2098296e1c129fee7803fb8cd9bb82a1d1f78fabc6636818cd14d42752c5ed566de7921f530ab1
- SSDEEP
  
  98304:vVtviy75XQUbnfGtgar62ONHyNZ8AEpWfEEkSMf:9M25XQUbnuONHyD85Auf
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2