skuld | a50b5e5d5c49a76ae1ec52fce575e2e12de2b61180e83711db0d2ad23083ab1e | Triage

Sharing

General

Target

2025-02-20_abe962cbc49516c52e90d079a80887a6_frostygoop_luca-stealer_ngrbot_poet-rat_snatch
Size

9.9MB
Sample

250220-2b7qqawpdx
MD5

abe962cbc49516c52e90d079a80887a6
SHA1

f238eb83f95e62194efc378aec274b5a0010566d
SHA256

a50b5e5d5c49a76ae1ec52fce575e2e12de2b61180e83711db0d2ad23083ab1e
SHA512

2c5c7e923890ec65d08ae19abcbc68b682a80f1063e0536e2241ba8afca6452ccf2bf2848b8e57319c7d8b323082e42ad2a560e2e3b175621f888e036e677047
SSDEEP

98304:HI8UBCbv0eMEZfA+7HZqhH090i1oEBLGg7BDNF+dYqJ:HIAv0epVqhH0iuBlR+mqJ

Score

10^/10

skuld persistence

Malware Config

Targets

- Target
  
  2025-02-20_abe962cbc49516c52e90d079a80887a6_frostygoop_luca-stealer_ngrbot_poet-rat_snatch
- Size
  
  9.9MB
- MD5
  
  abe962cbc49516c52e90d079a80887a6
- SHA1
  
  f238eb83f95e62194efc378aec274b5a0010566d
- SHA256
  
  a50b5e5d5c49a76ae1ec52fce575e2e12de2b61180e83711db0d2ad23083ab1e
- SHA512
  
  2c5c7e923890ec65d08ae19abcbc68b682a80f1063e0536e2241ba8afca6452ccf2bf2848b8e57319c7d8b323082e42ad2a560e2e3b175621f888e036e677047
- SSDEEP
  
  98304:HI8UBCbv0eMEZfA+7HZqhH090i1oEBLGg7BDNF+dYqJ:HIAv0epVqhH0iuBlR+mqJ
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2