umbral | dc11360acf8f01be72fb50c373151b074c843e23acd14bbf459f952932ed79db | Triage

Submit
Reports

Overview

overview

Static

static

3

Steam.exe

windows11-21h2-x64

Resubmissions

20-02-2024 04:04

240220-emykvsaf5s 10

20-02-2024 04:01

240220-elnz2abc35 3

Sharing

General

Target

Steam.exe
Size

765KB
Sample

240220-emykvsaf5s
MD5

888d4a78e9c446900067465ada4b5f16
SHA1

43e52673ff86ab636dc69d7ecefa044ab9ade21e
SHA256

dc11360acf8f01be72fb50c373151b074c843e23acd14bbf459f952932ed79db
SHA512

b6159e05c4b4cb9668f2ed780903153514ad90d9a34dc30da7ba26c494dc4928fad97c1f2d3d554c435435123e1fdbc5dd284243f5163d94f0fcc05a9b19d45d
SSDEEP

6144:+y8dQia/duhetNmtxpgmLKzmseFuaTOYYmWWTMNlOuKLMhp+GIIIIIIIhIIIIII3:+y8dWEEGjFHsLBi

Score

10^/10

umbral stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Steam.exe

Resource

win11-20240214-en

windows11-21h2-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  Steam.exe
- Size
  
  765KB
- MD5
  
  888d4a78e9c446900067465ada4b5f16
- SHA1
  
  43e52673ff86ab636dc69d7ecefa044ab9ade21e
- SHA256
  
  dc11360acf8f01be72fb50c373151b074c843e23acd14bbf459f952932ed79db
- SHA512
  
  b6159e05c4b4cb9668f2ed780903153514ad90d9a34dc30da7ba26c494dc4928fad97c1f2d3d554c435435123e1fdbc5dd284243f5163d94f0fcc05a9b19d45d
- SSDEEP
  
  6144:+y8dQia/duhetNmtxpgmLKzmseFuaTOYYmWWTMNlOuKLMhp+GIIIIIIIhIIIIII3:+y8dWEEGjFHsLBi
Score

10^/10

umbral stealer
- Detect Umbral payload
- Umbral
  Umbral stealer is an opensource moduler stealer written in C#.
  stealer umbral
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy