Extracted

• • Target

    slinky.exe

  • Size

    14.8MB

  • MD5

    58bc5cc47fa258cd1be97ee171a551d6

  • SHA1

    d359a53319cd2d6da314b1d3d3626c9d2f455f8d

  • SHA256

    28d351252216d3ac879ed61553fabb73ba58890ad1a603ecf23083e07dc00612

  • SHA512

    2e7de308bce8865dcca1ca25c78d0be9128ad4efe0f48a7e4216c04822b07325964bfb2a0958952f10e155e510a450bbab113cf2e92a7a0017bf05335676ab55

  • SSDEEP

    196608:DqZ4f/oCqKqc/3h4Po9NXx+29GAB7ob73mrVGwYdNE2vfUW:OZ4XoBKHN9AuM73gQDvfUW

  Score

  10^/10

  skuldpersistencestealer

  • Skuld family

    skuld

  • Skuld stealer

    An info stealer written in Go lang.

    stealerskuld

  • Adds Run key to start application

    persistence

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  behavioral1behavioral2