Overview

overview

10

Static

static

10

HavocV2.exe

windows11-21h2-x64

10

Resubmissions

19-02-2024 02:04

240219-chgqfagg3z 10

19-02-2024 02:01

240219-cfpm9sha64 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    HavocV2.exe

  • Size

    395KB

  • MD5

    bbd057262f45309b69aac1969de8905d

  • SHA1

    be351afb488c78f984213d8b8fceb0792c00414a

  • SHA256

    d223ace00adcf9996234b0e5f85b14ca273ead2c01672f7abc8469cfeacf1408

  • SHA512

    caf0791490f568c2ac5b2242a638a8ff557916d390470b5e04acd6c3bd49a3a69be3ae015a2eb4f10624f8cbd54b99c539011da820ef949ad17b1db88e46b12d

  • SSDEEP

    6144:7loZM+rIkd8g+EtXHkv/iD4LD/xEKtFuHr20VJgU0b8e1m/lm4iUG:ZoZtL+EP8LD/xEKtFuHr20VJghzBh

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1202713966892154880/hKt1959RM0bV5-3CpJAwh821Kr6T7h9g1Q2lLB0g86ovim2izdHbNw9y6LtQFK8C5Zhm

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • HavocV2.exe
    .exe windows:4 windows x86 arch:x86

    Password: havoc

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections