skuld | 1d7166f1cb758d252af9904e32bd128df4a9b4292ca2d162a611eff35eabe8f7

Resubmissions

27/01/2025, 00:24 UTC

22/01/2025, 00:38 UTC

max time kernel
83s
max time network
16s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
22/01/2025, 00:38 UTC

Target

1d7166f1cb758d252af9904e32bd128df4a9b4292ca2d162a611eff35eabe8f7N.exe
Size

3.3MB
MD5

2f0fcaa5e89062a81b58c83b674a64c0
SHA1

13e33c1618c51ed9b1addb7f44b3b65879862545
SHA256

1d7166f1cb758d252af9904e32bd128df4a9b4292ca2d162a611eff35eabe8f7
SHA512

d5f13e8501fa2debed15854fa49cc901d33f5c53291a1c09901260f4ad23c7fbc4fa6bbba1fea52f347bf4e337455ddf7dc65b400309612e9abae4c1bbe56557
SSDEEP

98304:/9JzAeYfc6nrsoXGOOmjwj7ag+KFDgKcE4cxFub:/TzxSAoXGlD7pNDgWxYb

Score

10^/10

skuld stealer upx

Family

skuld

https://discord.com/api/webhooks/1328819841737691156/GQdbtF6NI_oe0OnUTJWsjVTdzNbgAZYn13jZrPxtL_1Auu1nh-mM1mLtqtoNq50gPvUV

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral1/memory/1548-0-0x0000000000B80000-0x00000000015C9000-memory.dmp	upx
behavioral1/memory/1548-1-0x0000000000B80000-0x00000000015C9000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\1d7166f1cb758d252af9904e32bd128df4a9b4292ca2d162a611eff35eabe8f7N.exe
"C:\Users\Admin\AppData\Local\Temp\1d7166f1cb758d252af9904e32bd128df4a9b4292ca2d162a611eff35eabe8f7N.exe"
1⤵
PID:1548

memory/1548-0-0x0000000000B80000-0x00000000015C9000-memory.dmp

Filesize
10.3MB

Download
memory/1548-1-0x0000000000B80000-0x00000000015C9000-memory.dmp

Filesize
10.3MB

Download