umbral | 36399eb1f9e05f38e756936ba09df8d1abe65a6b57204f01ffc607590f43a6c8 | Triage

Submit
Reports

Overview

overview

Static

static

1

lazedebugobf.rar

windows11-21h2-x64

Sharing

General

Target

lazedebugobf.rar
Size

81KB
Sample

240104-vmxlkagbe3
MD5

cb595ccd6ed603a941fdcfea3e02c28f
SHA1

7a837f13827677113816d0c91ecd3c05c493a150
SHA256

36399eb1f9e05f38e756936ba09df8d1abe65a6b57204f01ffc607590f43a6c8
SHA512

cf970e14b070370dd3b9ccc9bae831d9d2cf1298439ccff80698196eb28faef47d2ae7a13f228ed73f4c9533f295776f0fb9733a23b4bd2b033e8f483cd89c6b
SSDEEP

1536:6UbxlxLvxNhKwOHj4FrcUA9uhh3XRNgv65YlA1i3+fOkJPyuWiaKOHJG2s:tbTNhKhHMr3iuhhnRKN+C+ftauTaKOoH

Score

10^/10

umbral stealer

Static task

static1

Behavioral task

behavioral1

Sample

lazedebugobf.rar

Resource

win11-20231222-en

windows11-21h2-x64

9 signatures

300 seconds

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1005024150882099240/khYBJOc4FQNJuv-BvZjBBTykGgJUimQ5GLYiEAUjKfqFwzv4plf4HvRFL0bMjUAAW-6N

Targets

- Target
  
  lazedebugobf.rar
- Size
  
  81KB
- MD5
  
  cb595ccd6ed603a941fdcfea3e02c28f
- SHA1
  
  7a837f13827677113816d0c91ecd3c05c493a150
- SHA256
  
  36399eb1f9e05f38e756936ba09df8d1abe65a6b57204f01ffc607590f43a6c8
- SHA512
  
  cf970e14b070370dd3b9ccc9bae831d9d2cf1298439ccff80698196eb28faef47d2ae7a13f228ed73f4c9533f295776f0fb9733a23b4bd2b033e8f483cd89c6b
- SSDEEP
  
  1536:6UbxlxLvxNhKwOHj4FrcUA9uhh3XRNgv65YlA1i3+fOkJPyuWiaKOHJG2s:tbTNhKhHMr3iuhhnRKN+C+ftauTaKOoH
Score

10^/10

umbral stealer
- Detect Umbral payload
- Umbral
  Umbral stealer is an opensource moduler stealer written in C#.
  stealer umbral
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy