skuld | 228a69138dba12da1184a68a7e883919bcad423ac782cc755067b23c725bd158 | Triage

Resubmissions

25/03/2025, 19:38

250325-ycd81s1whv 10

Sharing

General

Target

skuld.exe
Size

10.3MB
Sample

250325-ycd81s1whv
MD5

beaf208ab04959371a65a694d4a0d081
SHA1

c31e408b2531d13774fd804c17010aba79f376c5
SHA256

228a69138dba12da1184a68a7e883919bcad423ac782cc755067b23c725bd158
SHA512

6aad07449f5874844e87c79958575bd0b40572d9ac0153ad8410971a280d4fd5ac66799eb6796a28e0340ea964320c0492d5f2cd00d9b360b652fda95938494d
SSDEEP

98304:fE0v4ReZk92MOfpgu+NslUEk41YIR/wIA0rn7qEKb:fJ4UZklu+NsSp41YIR/wry3Kb

Score

10^/10

skuld persistence

Malware Config

Extracted

Family

skuld

C2

https://discord.com/api/webhooks/1354176357311189104/oxV0cmq379hkWPOaGXLXPrU6ejMq31VaAbDxwz_mMdlrcHKW3Ud-OGdtU6k5gLuP9kL_

Targets

- Target
  
  skuld.exe
- Size
  
  10.3MB
- MD5
  
  beaf208ab04959371a65a694d4a0d081
- SHA1
  
  c31e408b2531d13774fd804c17010aba79f376c5
- SHA256
  
  228a69138dba12da1184a68a7e883919bcad423ac782cc755067b23c725bd158
- SHA512
  
  6aad07449f5874844e87c79958575bd0b40572d9ac0153ad8410971a280d4fd5ac66799eb6796a28e0340ea964320c0492d5f2cd00d9b360b652fda95938494d
- SSDEEP
  
  98304:fE0v4ReZk92MOfpgu+NslUEk41YIR/wIA0rn7qEKb:fJ4UZklu+NsSp41YIR/wry3Kb
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2