Overview

overview

10

Static

static

10

Promo link...or.exe

windows11-21h2-x64

10

Resubmissions

01-02-2024 15:13

240201-sl2ssaacgq 10

01-02-2024 15:00

240201-sdlrlaaagq 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Promo link generator.exe

  • Size

    228KB

  • MD5

    4e711e7231a67ebf4278a6ba9e2a1f98

  • SHA1

    9bc200a14d089e0fe869674ee5f4219e86dc3009

  • SHA256

    cfb4919168697ab5bfaa045cbf2c647aa55c1ffc8f5109acf90f2e90af14f40a

  • SHA512

    38ac5f01c19304431f1b862172fd0ed7b67fd8926c94e289a7a9b06a6772b02c7708f9ebeb3263269721d379dede458bd29d16fd6eb81eb500d85b202707ec0f

  • SSDEEP

    6144:BloZMUrIkd8g+EtXHkv/iD409mMN5nsAv9R0STTKg/Yb8e1mIi:zoZrL+EP8gmMN5nsAv9R0STTKBm

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1196551286892535848/BI-4wJMe0VqcV998bhbMUu_wWa9MHqKDsvG2bhmZuynbA6FvVmQpf3BApw4_YqBZ6TZ5

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Promo link generator.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections