skuld | d05522481dd5442c0930e412cce5028b985788311f77c099ba0ebd25d79f3a92 | Triage

Sharing

General

Target

2025-04-04_826c0ac7ca7635ea52bb194d813937e5_frostygoop_luca-stealer_ngrbot_poet-rat_sliver_snatch
Size

9.3MB
Sample

250404-gej4ls1sfx
MD5

826c0ac7ca7635ea52bb194d813937e5
SHA1

7ec353ed29af23e7b6e1dfed5be35cf7b8db81ed
SHA256

d05522481dd5442c0930e412cce5028b985788311f77c099ba0ebd25d79f3a92
SHA512

1636f3df40961715d63dea39f6f39ed73e3b1bc27a091ca8d64f453c226c7c23cffa461e93ba7a88ab23031ee59117b2c0295e0ca400393f4a7d13ca0aeb83a6
SSDEEP

98304:2n9IO5k+ijWcfaPsLKiyYH+LW0OEfb/wcEEkzbkT:aBk+ijWVmyYH+i0rj/wCT

Score

10^/10

skuld persistence

Malware Config

Targets

- Target
  
  2025-04-04_826c0ac7ca7635ea52bb194d813937e5_frostygoop_luca-stealer_ngrbot_poet-rat_sliver_snatch
- Size
  
  9.3MB
- MD5
  
  826c0ac7ca7635ea52bb194d813937e5
- SHA1
  
  7ec353ed29af23e7b6e1dfed5be35cf7b8db81ed
- SHA256
  
  d05522481dd5442c0930e412cce5028b985788311f77c099ba0ebd25d79f3a92
- SHA512
  
  1636f3df40961715d63dea39f6f39ed73e3b1bc27a091ca8d64f453c226c7c23cffa461e93ba7a88ab23031ee59117b2c0295e0ca400393f4a7d13ca0aeb83a6
- SSDEEP
  
  98304:2n9IO5k+ijWcfaPsLKiyYH+LW0OEfb/wcEEkzbkT:aBk+ijWVmyYH+i0rj/wCT
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1