umbral | 566b54607603dfa8fd98fb3a37a269324e8fc4d663a5d350b5ffe262cca417fe | Triage

Submit
Reports

Overview

overview

Static

static

AppleCleaner.exe

windows10-2004-x64

Sharing

General

Target

AppleCleaner.exe
Size

229KB
Sample

231121-vg754sff94
MD5

932743e04b592d487ccc1228d06c1861
SHA1

b73718231a99836cd795a267c4d8283a4ac28f98
SHA256

566b54607603dfa8fd98fb3a37a269324e8fc4d663a5d350b5ffe262cca417fe
SHA512

4ac1c1d385651fc3e6a04c53d3625a8a2a8f9cdb40f1fd136136d1b289763732765d2424f9eb13fa6040d211dbc8c768b2bb2e6f3032b105c1c04c90d161b07e
SSDEEP

6144:dloZM3fsXtioRkts/cnnK6cMl9I6lrecjfUo1gevPeEtb8e1mxni:/oZ1tlRk83Ml9I6lrecjfUo1gevPeg/

Score

10^/10

umbral stealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

AppleCleaner.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Family

umbral

C2

https://discordapp.com/api/webhooks/1167513750333575188/AwbF1-uOQDpdmW47qlMpgKElmAEN9IkhChVUYloDWwzZN7yxpb5pSWmYr75EzFmVpes6

Targets

- Target
  
  AppleCleaner.exe
- Size
  
  229KB
- MD5
  
  932743e04b592d487ccc1228d06c1861
- SHA1
  
  b73718231a99836cd795a267c4d8283a4ac28f98
- SHA256
  
  566b54607603dfa8fd98fb3a37a269324e8fc4d663a5d350b5ffe262cca417fe
- SHA512
  
  4ac1c1d385651fc3e6a04c53d3625a8a2a8f9cdb40f1fd136136d1b289763732765d2424f9eb13fa6040d211dbc8c768b2bb2e6f3032b105c1c04c90d161b07e
- SSDEEP
  
  6144:dloZM3fsXtioRkts/cnnK6cMl9I6lrecjfUo1gevPeEtb8e1mxni:/oZ1tlRk83Ml9I6lrecjfUo1gevPeg/
Score

10^/10

umbral stealer
- Detect Umbral payload
- Umbral
  Umbral stealer is an opensource moduler stealer written in C#.
  stealer umbral
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy