General

  • Target

    cyber vortex 3.rar

  • Size

    238KB

  • MD5

    91d80ed4406e67ece325383e6f7f24e3

  • SHA1

    5840722eb933d086c82e0ee3838beed3f0bc45a4

  • SHA256

    c9ec4eedb1e3aecfbb616ea4e4c3275e2b1ec7aeac7a714fbf9a97d43006c455

  • SHA512

    27bf5e5876a084727d7f85dc3020f49d4fdfade7cf85a43df06e6c72ff4324a848b767a1a4fc92b589cccf638e362def07215ea72da42e818378d97dc5a7e13c

  • SSDEEP

    6144:tze7SZgMpjc6hr6em+OeooHEjNug8Vn/lCdY5C0Y9n6DIG:HRpj76eZkjNud/sdKwkJ

Score
10/10

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1119647627798138880/G1mEes2ZAiZ5cWBV4qfRXKYsUJBh6WFAkcuLDN_oZbx54PdJy0_gDk3jBJIVu-NAV6rw

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • cyber vortex 3.rar
    .rar

    Password: 123

  • EasyExploits.dll
    .dll windows x86

    Password: 123

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • FastColoredTextBox.dll
    .dll windows x86

    Password: 123

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Scripts/read me.txt
  • cyber vortex 3.exe
    .exe windows x86

    Password: 123

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.