skuld | f42d031594a7899b74d6635aef7cb1f743a219bedc46dc6d5fe059c610b1b091 | Triage

Sharing

General

Target

skuld.exe
Size

9.9MB
Sample

250119-2vpn9azkby
MD5

c41bcb9a79f6642a41b2700cb6568d5f
SHA1

0d3513ad6b40883d382be67fc06b0412186c2101
SHA256

f42d031594a7899b74d6635aef7cb1f743a219bedc46dc6d5fe059c610b1b091
SHA512

0c7445dfa9e808ae6b28777105c33a38d52d8c038ed77d7ab6f23a5112ca5015c57730c557fa588343001c3f8d6ba87fc2b4671a5db792ab48c3244940bc01fe
SSDEEP

98304:KtKxH9nEaPLV9mx7bZqRQvKWmhAEbLGg7BDkF+dQq:KtInEaHEJqRQvjC5bC+Gq

Score

10^/10

skuld persistence

Malware Config

Extracted

Family

skuld

C2

https://discord.com/api/webhooks/1330671297495044137/7gggydtTsHUopBaqqQiMB0z851EUsj26f27K8XZtS5_-RCO-zV7_JJBvZiO_yGCUQYDu

Targets

- Target
  
  skuld.exe
- Size
  
  9.9MB
- MD5
  
  c41bcb9a79f6642a41b2700cb6568d5f
- SHA1
  
  0d3513ad6b40883d382be67fc06b0412186c2101
- SHA256
  
  f42d031594a7899b74d6635aef7cb1f743a219bedc46dc6d5fe059c610b1b091
- SHA512
  
  0c7445dfa9e808ae6b28777105c33a38d52d8c038ed77d7ab6f23a5112ca5015c57730c557fa588343001c3f8d6ba87fc2b4671a5db792ab48c3244940bc01fe
- SSDEEP
  
  98304:KtKxH9nEaPLV9mx7bZqRQvKWmhAEbLGg7BDkF+dQq:KtInEaHEJqRQvjC5bC+Gq
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2