skuld | 2adfc3fa68d28b43df26b98ac0708cc96f1b9e5fc16c3bd9338db450043f1929 | Triage

Sharing

General

Target

skuld.exe
Size

9.9MB
Sample

250119-2wy93szngj
MD5

f48f9c79f859d6face1e5efeaf2591c1
SHA1

1263751e667965c0c30d764be0968ed4dfaf2816
SHA256

2adfc3fa68d28b43df26b98ac0708cc96f1b9e5fc16c3bd9338db450043f1929
SHA512

6c15f54d043445ed2a70fcc3fc11a2db4ce90c4e50afbb81a11c17bbc32dcc5e71ed1c8e561fa330fb45669074bd0e2f288755ed9feea1f6bc28d8e2a0c82463
SSDEEP

98304:1taxH9nEaPrV9mx7bZqRQvKWmhAELLGg7BDkF+dcq:1tYnEaHEJqRQvjC5rC+qq

Score

10^/10

skuld persistence

Malware Config

Extracted

Family

skuld

C2

https://discord.com/api/webhooks/1330671297495044137/7gggydtTsHUopBaqqQiMB0z851EUsj26f27K8XZtS5_-RCO-zV7_JJBvZiO_yGCUQYDu

Targets

- Target
  
  skuld.exe
- Size
  
  9.9MB
- MD5
  
  f48f9c79f859d6face1e5efeaf2591c1
- SHA1
  
  1263751e667965c0c30d764be0968ed4dfaf2816
- SHA256
  
  2adfc3fa68d28b43df26b98ac0708cc96f1b9e5fc16c3bd9338db450043f1929
- SHA512
  
  6c15f54d043445ed2a70fcc3fc11a2db4ce90c4e50afbb81a11c17bbc32dcc5e71ed1c8e561fa330fb45669074bd0e2f288755ed9feea1f6bc28d8e2a0c82463
- SSDEEP
  
  98304:1taxH9nEaPrV9mx7bZqRQvKWmhAELLGg7BDkF+dcq:1tYnEaHEJqRQvjC5rC+qq
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1