General

  • Target

    Umbral.bin.zip

  • Size

    90KB

  • Sample

    231011-p9dt3sah44

  • MD5

    8b4493da5ab2eaf7b6c65fc50304a82e

  • SHA1

    e0a31c4ed71e18a044048783e7f34b860dfe7b1c

  • SHA256

    12fa9aa3c10013a89dfc83a538dedaf7d6dec6cd126b3eefa77c816103b36d16

  • SHA512

    ae3797768881bf397462bdfcf0575504b7387ab5bf18894dc4577f4c197af04dc5522e72ac82e670f90b2a8d23066ababa312de05ed3504a8f8ca45caba5e35a

  • SSDEEP

    1536:1r9Faeb3BNoYbcs5Cv4T+uw8T4w6p/uZGsYbSwxN3D6rY0vu2bLuBW3+WRFs5ox9:fBNDgs5CsmVsYOwvTQY+bVTs5oxqYFr

Score
10/10

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1116999435440889866/tFz5sOm8rhkMFZAK5ZNJrBblKVolrxCvoJVsmi8Q21bQ0Tq0IjhhGe0JEdycWjEiET6l

Targets

    • Target

      Umbral.bin

    • Size

      231KB

    • MD5

      910a5896b1488769e91e985b0dbba73f

    • SHA1

      2416ce9e4e5b8843520acc93b4ac4a157a29b261

    • SHA256

      60edfe75e435ed4ce8c42bad52ba9986c1d5bb3359fad93da6987e2131124888

    • SHA512

      bcc0fc3c9b6fd8eacfa62b83053e2637a8ec61520ce72795317f2719136f1883ad4b5cbd386a7c71064ae55958cadc7b03055dfefe2511b2b78843c32d18ee83

    • SSDEEP

      6144:RloZM+rIkd8g+EtXHkv/iD4uzBdCg/7IiR0STTKBoXb8e1mJi:joZtL+EP8uzBdCg/7IiR0STTKgf

    Score
    10/10
    • Detect Umbral payload

    • Umbral

      Umbral stealer is an opensource moduler stealer written in C#.

MITRE ATT&CK Matrix

Tasks