umbral

General

Target

Nightmare primordial.rar
Size

301KB
Sample

240217-la7rbsdg95
MD5

0db08fb61756fd21c1f5ef57f6efb558
SHA1

2738f7aee9bfb561a8de01f3791e2cd366731075
SHA256

76b918c2381bcf640fd178c6adf290dd67be20861b7bac8c253fa87a34b09c9a
SHA512

206db77485338b38d757fc88abe136ecf3ddb91b3f3b14f7455304ec0545cc97917e560d46f8c438b0a2343907cf7102c8507eeada8b00a5658f203524fc47fc
SSDEEP

6144:jUke+abRp2dRG0f4fm/Bb4zbfQ6Maw19kjNhtKti2pXTFUnoP9b2wxG:jK+abxXoYQcjNhstNpXZoIxG

Score

10^/10

umbral stealer

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1120806695107575818/w934Ho43pR02N99efviWvvl0z2bdnFX1GmqAH_KAKHc-anmIPAWpGFkq0QyTT_J0xwGc

Targets

- Target
  
  primordial loader cracked.exe
- Size
  
  229KB
- MD5
  
  aade2822bd0471da2ed5a068a099fb1b
- SHA1
  
  39e9fbd333650353aff09f6f0f66a3d1d6dcdd14
- SHA256
  
  00201eadd8efe516d68a7b736bd3b66635ad9bd5c7ede630bd2a85edf2d3f97d
- SHA512
  
  0dbb3f78c8034330010bc02053b382489243a69a9a2d179f96b34715acf8b805c824e2efbf13ba870e570138a9aecb3e7696167cd9f264bc4bd750dd3da545dc
- SSDEEP
  
  6144:7loZM99EBt/SqctonEPfCqArWu/p3cw/3eHp0AVwpJ8e1muf8:ZoZvFSqcwvrWu/p3cw/3eHp0AVCVk
Score

10^/10

umbral stealer
- Detect Umbral payload
- Umbral
  Umbral stealer is an opensource moduler stealer written in C#.
  stealer umbral
behavioral1 behavioral2
- Target
  
  primordialV2.dll
- Size
  
  732KB
- MD5
  
  24ba5715af200d9ecec893e8eda22488
- SHA1
  
  a137100bb81978775efbc6acce50d16662946970
- SHA256
  
  1a5ac5e4cd843bef11f81fb5c3b6789ea0d50cddb793da1fe18710916a236620
- SHA512
  
  639c123f11e2acdfe3d706ed8bb4f67c2fe8ff7677483842820c6d7c79eb579de1e42fa0a56a5fa19abcc37b9228b56b600f9bb4f2e521a498539f775890365b
- SSDEEP
  
  12288:MdC4wg9AEdFmCiv9u13TxuxtOgAVSt5UPP4o3Hf5lp9o0fjf7CGy+dptwE4nrX2N:MM4wg9FoOgAHdlpJd03Ooc8dHkC2e6Z
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

1

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Extracted

Targets

Detect Umbral payload

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4