skuld | 3b3cfcf886394c7de10668f91f41842cf042f5eb3982dfab754c6c062b36968f | Triage

Resubmissions

07/04/2025, 21:56

250407-1tnvwswky9 10

07/04/2025, 21:55

250407-1s4vqawky6 10

Sharing

General

Target

crusaderh.exe
Size

10.3MB
Sample

250407-1s4vqawky6
MD5

3546535c86608256106fbbcd12947541
SHA1

fe89e73f8a6258d4802599cfeb68a5d64211f62b
SHA256

3b3cfcf886394c7de10668f91f41842cf042f5eb3982dfab754c6c062b36968f
SHA512

3386a25743192b625788d5f7ac0eb042c7b740448129e178ae4c3ca78384ea056653cadaed2487bfde7c103d8f18bbb6f80415a1ef160d00a536b046cd34f2d2
SSDEEP

98304:IEmfFRZ6PUsNpPRK1GGnsC+asUL+R/w6sA0rn7AEcb:IvFRsPUXGGnsjjUL+R/wiy5cb

Score

10^/10

skuld persistence

Malware Config

Extracted

Family

skuld

C2

https://discord.com/api/webhooks/1358292626033479860/bWGdGqkSCGvNdRIBRnMP6UScL2OEb5UwrQVRSjwGQZv-ahN0TLFNqRlxmegpGo3-6Lyl

Targets

- Target
  
  crusaderh.exe
- Size
  
  10.3MB
- MD5
  
  3546535c86608256106fbbcd12947541
- SHA1
  
  fe89e73f8a6258d4802599cfeb68a5d64211f62b
- SHA256
  
  3b3cfcf886394c7de10668f91f41842cf042f5eb3982dfab754c6c062b36968f
- SHA512
  
  3386a25743192b625788d5f7ac0eb042c7b740448129e178ae4c3ca78384ea056653cadaed2487bfde7c103d8f18bbb6f80415a1ef160d00a536b046cd34f2d2
- SSDEEP
  
  98304:IEmfFRZ6PUsNpPRK1GGnsC+asUL+R/w6sA0rn7AEcb:IvFRsPUXGGnsjjUL+R/wiy5cb
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1