umbral | 89942c4a6e1e3f33fa950549133aca7dcc154c7d88cea43d78aa3669de12eba6 | Triage

Submit
Reports

Overview

overview

Static

static

tmp.exe

windows7-x64

tmp.exe

windows10-2004-x64

Sharing

General

Target

tmp
Size

230KB
Sample

230912-plbptaeh89
MD5

9b8f2f4b5dd94329b4f79b9a829d73ae
SHA1

a8f7cc119eebfe74a5c8e37b72f784270acc9976
SHA256

89942c4a6e1e3f33fa950549133aca7dcc154c7d88cea43d78aa3669de12eba6
SHA512

6ef635a35083573e5d142d7a900c60bc32b8096b31762d6f08fd8b532b518a40eef59f8be44e34699f4a624c47bdbb639051877d305588761868bb93c2523c50
SSDEEP

6144:9loZMYrIkd8g+EtXHkv/iD4sf9Ghv0IHx2PxM4dVHb8e1m+i:foZvL+EP8sf9Ghv0IHx2PxM4d54

Score

10^/10

umbral stealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

tmp.exe

Resource

win7-20230831-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

tmp.exe

Resource

win10v2004-20230831-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1150555857097080872/lm70Xbzg4b7iQf-7bYKRoJzpldQyC6B9MRF8b8VtWe79cxa7np8xoHZxHKC2mHfEgDER

Targets

- Target
  
  tmp
- Size
  
  230KB
- MD5
  
  9b8f2f4b5dd94329b4f79b9a829d73ae
- SHA1
  
  a8f7cc119eebfe74a5c8e37b72f784270acc9976
- SHA256
  
  89942c4a6e1e3f33fa950549133aca7dcc154c7d88cea43d78aa3669de12eba6
- SHA512
  
  6ef635a35083573e5d142d7a900c60bc32b8096b31762d6f08fd8b532b518a40eef59f8be44e34699f4a624c47bdbb639051877d305588761868bb93c2523c50
- SSDEEP
  
  6144:9loZMYrIkd8g+EtXHkv/iD4sf9Ghv0IHx2PxM4dVHb8e1m+i:foZvL+EP8sf9Ghv0IHx2PxM4d54
Score

10^/10

umbral stealer
- Detect Umbral payload
- Umbral
  Umbral stealer is an opensource moduler stealer written in C#.
  stealer umbral
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy