skuld | 3cbc75fcd3eae507e6a437cdbcbdc951d7bb414a93fc5cfab93fe7641b88fd66 | Triage

Sharing

General

Target

2025-02-23_72d587448fcb5f8b21fa8613133c097e_frostygoop_luca-stealer_ngrbot_poet-rat_snatch
Size

9.9MB
Sample

250223-vh3xsavls2
MD5

72d587448fcb5f8b21fa8613133c097e
SHA1

12a657f8b8e6d1787d1fef3dbd2fa0a12dc689ca
SHA256

3cbc75fcd3eae507e6a437cdbcbdc951d7bb414a93fc5cfab93fe7641b88fd66
SHA512

c6bb932f69c11db500c929df838d0cf54e29827e75c8eaf73d8ae4a4e55c7ea790f2b6b87fefe7990e67038bf6eb5b7f9f1108a8213dd9e3ec82f22ed58e9da5
SSDEEP

98304:jWRQmoduu5cb9zXHCVtjteJPYkqLEvD2gCZmmz:aRg75chu/teJPTqYOzz

Score

10^/10

skuld persistence

Malware Config

Targets

- Target
  
  2025-02-23_72d587448fcb5f8b21fa8613133c097e_frostygoop_luca-stealer_ngrbot_poet-rat_snatch
- Size
  
  9.9MB
- MD5
  
  72d587448fcb5f8b21fa8613133c097e
- SHA1
  
  12a657f8b8e6d1787d1fef3dbd2fa0a12dc689ca
- SHA256
  
  3cbc75fcd3eae507e6a437cdbcbdc951d7bb414a93fc5cfab93fe7641b88fd66
- SHA512
  
  c6bb932f69c11db500c929df838d0cf54e29827e75c8eaf73d8ae4a4e55c7ea790f2b6b87fefe7990e67038bf6eb5b7f9f1108a8213dd9e3ec82f22ed58e9da5
- SSDEEP
  
  98304:jWRQmoduu5cb9zXHCVtjteJPYkqLEvD2gCZmmz:aRg75chu/teJPTqYOzz
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2