General

  • Target

    Umbral-Stealer-main.zip

  • Size

    3.0MB

  • Sample

    240309-rzbcbaag7z

  • MD5

    4aa62c179e6d2b354d8b89ff459d4715

  • SHA1

    5bafd08d7828458bd21ec0a9bc157b6cdfa87eaf

  • SHA256

    0e7d3fb6dfa4b70913d6ed32772f2ebd898a008dd98778aefa145aa8d5c17f35

  • SHA512

    9d96f0d010605e3b68efc8681507752d82e85c6dcac75853ff11ab845ff08448a2b8d4404e98b62407133298da64004b8908675031b028b00429d53349f785c2

  • SSDEEP

    49152:X3kfrozNwoi+9/5r4m/GRF9VBDeqI6Q2RIJVPKizwM99L/ECHrrEPpQzN5A4KtBC:nkjozJ9/im8XVBKl6tOJVPFwML/Euyub

Score
7/10

Malware Config

Targets

    • Target

      Umbral-Stealer-main/Umbral.builder/Components/Build/Builder.cs

    • Size

      9KB

    • MD5

      9a2b1be892d4acd1acb7eb23edca52a8

    • SHA1

      316694e907775bd49a4b05d6560cfdaefe922acb

    • SHA256

      1cf06e955f1cf5857b34c0421f50f28369d1e908bb92d0922e9e59a96757a0f1

    • SHA512

      fae86c9a95868cc38b13a4f4e14c53527bcfba091cf22b8c624f5939b07668e90d44f1d4f9c578212bb7a4e5c70e14266480bd06c742a50c9877e0191b352e5b

    • SSDEEP

      192:iDsNRH6g62rESiy6UpyiYv6dfso+IrkiNsh68fXX51ACTqQ4BL:iAHH6XSeUGvFo+cshhfn5It

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/Components/Forms/AssemblyEditorForm.resx

    • Size

      13KB

    • MD5

      80e03b51930410560a8b032758c9ab03

    • SHA1

      4680834751fd8a97a94188e16d117d9e6e10cd77

    • SHA256

      bbf16750817505ba21d1c9920296411b18c2a95070c6f549ed340ed74f1a1cb1

    • SHA512

      e15c985b117de197e7b55ccbc9028d01a444e94ada3578c9e332cda878b41efc6e1f20eff4645fe108e21c9be5237e4d5642e3c8c547355e66353a1ebf5e6edf

    • SSDEEP

      384:Zf+tLPQnLvDOiFQXD7UMawUZgwIokPiQ3KokPiCokPimOokPi4uokPi6okUQ3liN:ZfWMnXOiWU+iQ3yi6imGi4miZQ3lHQ44

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/Components/Forms/MainForm.cs

    • Size

      7KB

    • MD5

      9291c82a222de37e9f4c3436a868919f

    • SHA1

      7b6dfe9c362b712d48249320a0651fb4c261cbbc

    • SHA256

      43b664cdde212570abb8b13708f47b2728cb3b32346ab89d55a224df68a67f61

    • SHA512

      609526fbf408819254be4d62eb9642ce867dc9cef60899da0c56f36c1dc9358de523792ae2e8a2424b1987a05b860661932a06b36d59f74ca2bcb50d64f09962

    • SSDEEP

      192:ij2Gfwb4Cjf+AgH9g6SwetiKJwefwiOgpSDkbL5XiSC6Jn2n7rtSSCg:ij2+wsLwhckbcrtSE

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/Components/Forms/MainForm.resx

    • Size

      23KB

    • MD5

      2aeafe43f50c1a5ee1b273884e6b3c1e

    • SHA1

      7ea2ad57d6c4e50ecb9908abf037b69913aa8dc0

    • SHA256

      fbf5bdc94c026c225ea8851d4ec1de81176d48747d21a6568a98ee2993e5d427

    • SHA512

      81f142cd843b8b6e7ca4db1d204f40058de19cdf9035af75cfa8ba3d4acf4b8616b006056d37327a750c6b965ac578200d6ca40185543c5bee2b170d0f6231bc

    • SSDEEP

      384:Zf+tLPQnLvDOiFQXD7U3FawvGaw5ZgwSokaXQSDV8okaXQdokaXQhdokaXQUfokX:ZfWMnXOiWaqVXQSDV1XQyXQhyXQU0XQN

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/Properties/Resources.Designer.cs

    • Size

      3KB

    • MD5

      311d73df3c182e556c964775da6867b5

    • SHA1

      12bb39b46560f6a8918d02efaf31bada1d13442e

    • SHA256

      a5c8c80a2f1d348c69bcb891e9c7095d2a6addf49f8927668986ddc7a9c7245d

    • SHA512

      33bbaf6bc7f8b46bb8f98ac91de81006798358a2c2b2c1e2a03ce7886c4dde66e8ab9e60a10cc8816d8ee00aa776989227e5a968508efa146ae9f7bc825a1870

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/Properties/Resources.resx

    • Size

      6KB

    • MD5

      c503b2f5c5121b402729796f61a6d380

    • SHA1

      0705072ddf1d1cec6fc31c305728578960e14e4c

    • SHA256

      998534fc8cae09a06e6eafc41c864f060904bc2f95f85e2c9691ed2de8912ceb

    • SHA512

      9a56fd9d328fb4cd4e79a4a6537a9d9adba4fa2d5452f0a25f6a5fa673f40ed0186c7fd8076a05770f7acaa9123712c698bde48ccb1d4fc880e75438b409b46a

    • SSDEEP

      192:KjrbLPD9sLvIzSvKgIqUyahF8FokwClQEokwCl:KjrbLPxsLvASvKgwyahF8FokwClrokwY

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/libs/Bunifu/Bunifu.Licensing.dll

    • Size

      1.3MB

    • MD5

      2b2740e0c34a46de31cf9da8a75d77cf

    • SHA1

      242324f1112e6387cda41686291b6e9a415eeb8c

    • SHA256

      a9be91cae167702885a5ca74273db779e3e391e2e604cc03779ed403c53ebe43

    • SHA512

      605eb300b159e6ed2ee872b6ee378eed7dde6541000221fcd94d52057be91cb3c7dd65c7203f05e0718303b157b6fb941498b5e653501f97f0417d459da6bc40

    • SSDEEP

      24576:ebkurkdR5uuMeiPUf2lHmdpjrcbYdwcqMw5LTvBrq/WGs1xGUfGUCco:a1roD9MeiUDDjrW4bqD5LDBrqWG0GUfX

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/libs/Bunifu/Bunifu.UI.WinForms.1.5.3.dll

    • Size

      342KB

    • MD5

      41c216d27c71a227774e680e95e99f31

    • SHA1

      0a2a93d4ecbf4bbec2faf110066c6b4472b0dbf5

    • SHA256

      012d717b4ac00c3686a772757f49c1908e223624e3974314cdb9fc9291073305

    • SHA512

      e355ba11e41b668e4459f709e87c3e212c8986ea894791d9155791ea9d7315372fb51531eb69204ed2ee38e242de7629e4a2f090c05bf9deeea9ea965ffaf651

    • SSDEEP

      6144:3e5XJsDZGUbIf5kqw23B1Q8g2iYcHIc6uWXMIFidNw:qMZGUbIf5T37Q8ncHNAMhNw

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/libs/Bunifu/Bunifu.UI.WinForms.BunifuButton.dll

    • Size

      107KB

    • MD5

      21f999e5ac72a16077511d41590822de

    • SHA1

      d8bb1a8a291f73cdf2b5658b2b65736c87db19dd

    • SHA256

      2a62c78f1f0db2e3258135b50f7885e6734c31c74a8f2f5782f285aa268c2f71

    • SHA512

      e04fe31870f266d772829053a6bb210a9513ff5c8c0f9a3a267ddbe1875125496caa602baf44a4e241ef84d933bd55b79af43d5871ed10c81711adecee78b8e3

    • SSDEEP

      3072:tgiMibnDED3/7f2ih0xdGzFpzUHgmCFKHUUZP0tTwmnkyY:xDDED3/7f2ih0xdGzFpzUHgmCFKHvF0e

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/libs/Bunifu/Bunifu.UI.WinForms.BunifuCheckBox.dll

    • Size

      102KB

    • MD5

      ef11f59a9381df17d7ab94434f79f260

    • SHA1

      ec11e46a636fe3927fd5fa7c30be65b958853ef0

    • SHA256

      390252aeb6fd76a954a03853c3d883e0360dc8b3f2cf8cfed5ba94e4e5a24da4

    • SHA512

      612b1b0f9204c605ff5e9b91816e674cdaea71fa69f81a5a7f475bf1cc8d5e12687deb1b0118b07b3d7e4764adede0576f8fc799f8155a65a70e5dafff50f73d

    • SSDEEP

      1536:JiQsfF22IDMxiQ9MOWnce1Cua4JfhwuKeWbZ6YlX52o3tWQFeOvTT:JifF22IoxChnv1CuhW1xCwdeOvX

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/libs/Bunifu/Bunifu.UI.WinForms.BunifuCircleProgress.dll

    • Size

      77KB

    • MD5

      bc930a050ca23ea75dbd9deade4189bb

    • SHA1

      e6878d381ac1c37c331fd01a25b2ec508e1c1a21

    • SHA256

      d5ed95667aa44a80278b80a90413c0de9d85eeb3ca1fa24a40ae71c3ad88d837

    • SHA512

      20e2bb3661d2817082c2aa01381b5aee8582fea5fc54be486de5b1e48f302a15779ebe5670221774a5a4d031248b342f3c86084de4f023c197cd210857fb3ff3

    • SSDEEP

      768:A8ioretsy7GQLZvAQFe1zbnprSBaqII0OsWjc1B5Nl4WfWQAz6uJi8B4dgUp2hQf:JixnZYQFe722Wj8l4oL+6uJ/BZ4ZTz

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/libs/Bunifu/Bunifu.UI.WinForms.BunifuColorTransition.dll

    • Size

      38KB

    • MD5

      539d803013c0b1592d0e17a740d72687

    • SHA1

      b0ce15e0f096d027b1d1482afa9d93bafd160f7a

    • SHA256

      500adece1fba76dfb2fa628de9886a2661ed1a4e58a7717a5fee607206bb1d81

    • SHA512

      77d8ab7a949db41a79371cf2ebd5d67bd4a38dd040de0073c878f50b2a6409fae2dc5db7cbf375fbc1bc571838b0a6d4848bdecc1420d91633b878585c94b9dd

    • SSDEEP

      768:2SfWaEnnh2U2DaRIx0qVuQ/90iAzNIewCqyU659bTTvtM/3JhQTifZs:cs0qVb/95+6ewCqyZ9bfvk0TWZs

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/libs/Bunifu/Bunifu.UI.WinForms.BunifuDataGridView.dll

    • Size

      83KB

    • MD5

      53765ad5b31fd87986a569bbb79f402c

    • SHA1

      75c7ec63458c79ded533d1d4175de4117036adae

    • SHA256

      9e61bd6dbcc8d5866bf3a139ea12f453ef4ca8bab28c08329cbc5f0bf13950df

    • SHA512

      ea129aab13b09e817be6210bc423bcf4e024c83a5a0340941e7658d4dd0ef6f3b40077527f7d168849ad947650a00d360fa6a5f64c4a8f14dfe72cd4d34469d3

    • SSDEEP

      1536:YNBBIrOTrgVCuiPwacJigM8H+duT0R0xSJQ9FTiIb8EtTG:YNBoGgsPiJfedkvu/IFtC

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/libs/Bunifu/Bunifu.UI.WinForms.BunifuDatePicker.dll

    • Size

      50KB

    • MD5

      a05882bac172c61b5b1bd3f4a56b4320

    • SHA1

      9a725973aa498472c253382ff8d766a5d3a41697

    • SHA256

      3c1ac3e39665e49327b64887131a53c63379de884b3a6f9a0ab96a36e882ceb7

    • SHA512

      a503f5cd0211b123618ecaff83a7930a6b547a1afaad1b93cc5e60bc859e255585a8a94832747422de139f2fe6451b2fcf46b31bac20e12ce60f97983e1af493

    • SSDEEP

      768:KMzEetGON+bjRFOchYvP0pbwk4LAzn21AXrpKXyvcgq8/i7l5THL8ZFxIZYzUebj:HsONqjRFO2ZxXpHraUNaT0

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/libs/Bunifu/Bunifu.UI.WinForms.BunifuDropdown.dll

    • Size

      50KB

    • MD5

      5bc3c478e3c44caf765c6e998dc621f0

    • SHA1

      8cd06d3ec991ae3d5c0d935ea03fd7c06d504d53

    • SHA256

      f746eef49caaf23939999a89c86787e6d1f4e4c16f667bcfebcaeacb5276e0c8

    • SHA512

      3990c0a716e2e0619cd969d75666cacf695b6d40a118ead8a810997a594b558250e4a661e303f383f58bc52cac90e84a2049a50a1295f762b2bdbdb8661c33f0

    • SSDEEP

      768:WxidV98e5TsEQgzWC/Vzv/8vWvLMFZhjd5hQTi7q:Y3ehsEQAWQHgW4Zhx0TN

    Score
    1/10
    • Target

      Umbral-Stealer-main/Umbral.builder/libs/Bunifu/Bunifu.UI.WinForms.BunifuFormDock.dll

    • Size

      102KB

    • MD5

      fff8d46f94011c5bfa4bc1d1fbde3eaa

    • SHA1

      c5e978eb89e9646423c3b2a1d7d2651cdbee90f0

    • SHA256

      f8052b4641fea785ef643bc06d0e5383555c0845bbe695099bc41ab09a180ef6

    • SHA512

      61af0253c05bd33d43d34799eb74d97ae9e3e700281273895026d690f39e3de97034ee51511284a4b6a4150d31977f7ac6fbf4047aa19825564a15eae8be079a

    • SSDEEP

      3072:wVypYUOJdOb8UD8m1PxGFXflE2BHjvZKDq6CN:wVypYUSXdbBjvZKDq1N

    Score
    1/10

MITRE ATT&CK Matrix

Tasks