skuld | 1bb08b094ad55a3dd7b37c882da713b0e1f94765fb7445a59d7d3a6885df4378 | Triage

Sharing

General

Target

2025-02-19_5ffe40c51646c4e81f4e8efbaa8e5a51_frostygoop_luca-stealer_ngrbot_poet-rat_snatch
Size

10.3MB
Sample

250219-yh5cdsxqbp
MD5

5ffe40c51646c4e81f4e8efbaa8e5a51
SHA1

ceaae317f71264cd9de836ff8467a5b497196a1f
SHA256

1bb08b094ad55a3dd7b37c882da713b0e1f94765fb7445a59d7d3a6885df4378
SHA512

5e127e707b50bb91ae64299479b0facbbecb8f4f66b53e4fb99cb3a3e2d0990971f06c4c7b9fde7567ce020a71a91c470940daf50151abfe92ce0b6da4153d37
SSDEEP

98304:F2Ek/yPs9x/iLS3CTpsvzEB4qbAXrFxEU/dF:F2UPsX/ivpsvzEB4zYU//

Score

10^/10

skuld persistence

Malware Config

Targets

- Target
  
  2025-02-19_5ffe40c51646c4e81f4e8efbaa8e5a51_frostygoop_luca-stealer_ngrbot_poet-rat_snatch
- Size
  
  10.3MB
- MD5
  
  5ffe40c51646c4e81f4e8efbaa8e5a51
- SHA1
  
  ceaae317f71264cd9de836ff8467a5b497196a1f
- SHA256
  
  1bb08b094ad55a3dd7b37c882da713b0e1f94765fb7445a59d7d3a6885df4378
- SHA512
  
  5e127e707b50bb91ae64299479b0facbbecb8f4f66b53e4fb99cb3a3e2d0990971f06c4c7b9fde7567ce020a71a91c470940daf50151abfe92ce0b6da4153d37
- SSDEEP
  
  98304:F2Ek/yPs9x/iLS3CTpsvzEB4qbAXrFxEU/dF:F2UPsX/ivpsvzEB4zYU//
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2