Overview

overview

10

Static

static

10

Unconfirme...77.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Unconfirmed 536577.crdownload

  • Size

    228KB

  • MD5

    12c48d1f3a769da2bdc422e0103f44da

  • SHA1

    393a5556c03ea82d857a4bf90460b49b41ef98b9

  • SHA256

    f579332f31726bd85514b796ab4ef05dfa73a49cb8cef4778e894655c4fcd3a7

  • SHA512

    b2d0eb7acc57ab5d1102fe05102fbdb79f9ec7ae7b10516cd4d1f9b17f0f719733583b26dcaa407b6e560259cbf4a551fbc0a4ac85d1112c60c31b5add00c9a2

  • SSDEEP

    6144:lloZM3fsXtioRkts/cnnK6cMlDWcYOsTPkgFQu//OpFvb8e1m/id:noZ1tlRk83MlDWcYOsTPkgFQu//OLdd

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discordapp.com/api/webhooks/1208929441737220159/gnSVMBwAysugn0qfWJ-CCqrayoKhSBn3_-0anrapxoNVrdwFtyAM6r55XKNVG5R10VFS

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Unconfirmed 536577.crdownload
    .exe windows:4 windows x86 arch:x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections