Overview

overview

10

Static

static

10

Napalm Loader.zip

windows10-1703-x64

1

Napalm Loader.exe

windows10-1703-x64

10

README.txt

windows10-1703-x64

1

checksum.txt

windows10-1703-x64

1

napalm_hook.dll

windows10-1703-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Napalm Loader.zip

  • Size

    273KB

  • Sample

    240311-ss93qseb4y

  • MD5

    4c4f83efa5526495db4b12f472ccf4d3

  • SHA1

    cf6c1335cc6c9ef74ed02d8ddd646320cb5812a1

  • SHA256

    c27b4cfc3eeafbac10fceb4ccece9eb702bbc83f95868e2d265c3b3e938dea79

  • SHA512

    944278376fc99b473694c8d0c06089c2ff456998f01c750c6e05b7a8f3e64a9d7ed0757bd5d2f23c300293a191f6834abb7ec8120edee307de913d5922d2ebd6

  • SSDEEP

    6144:+UIlaAElE0ZofsDYFr65YvmxswBJAgyBwAsMMEkESD7f:+ULlE0+Z6uvmxnDzONy

Score
10/10
umbralstealer

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1216653868696604733/z9ICRqvAltrXdcff42i6jJAKAQieBr2NjOHmdWoYSy9rTdeI8Hmmpg9kxkhm0AkBmQN7

Targets

    • Target

      Napalm Loader.zip

    • Size

      273KB

    • MD5

      4c4f83efa5526495db4b12f472ccf4d3

    • SHA1

      cf6c1335cc6c9ef74ed02d8ddd646320cb5812a1

    • SHA256

      c27b4cfc3eeafbac10fceb4ccece9eb702bbc83f95868e2d265c3b3e938dea79

    • SHA512

      944278376fc99b473694c8d0c06089c2ff456998f01c750c6e05b7a8f3e64a9d7ed0757bd5d2f23c300293a191f6834abb7ec8120edee307de913d5922d2ebd6

    • SSDEEP

      6144:+UIlaAElE0ZofsDYFr65YvmxswBJAgyBwAsMMEkESD7f:+ULlE0+Z6uvmxnDzONy

    Score
    1/10
    behavioral1

    • Target

      Napalm Loader.exe

    • Size

      234KB

    • MD5

      ea48746a371b2ad9de8f7cab0f43e535

    • SHA1

      823ef16b55f39302472adafc3db346902ec5e822

    • SHA256

      b045c2acabaee90a12b97375481f978f3680e97aa93b445b0f441c78f8fb161d

    • SHA512

      71c6597049a61e11f64508cd0a0e0f5f0825b8aba19585845d376af075cd8ad14b534221287180dd5cde59615350a45733818ce63ce60b7f0e6a98ca7cddef7d

    • SSDEEP

      6144:HloZM+rIkd8g+EtXHkv/iD4ctgClj8e1mBi:FoZtL+EP8Qpx

    Score
    10/10
    umbralstealer

    • Detect Umbral payload

    • Umbral

      Umbral stealer is an opensource moduler stealer written in C#.

      stealerumbral
    behavioral2

    • Target

      README.txt

    • Size

      325B

    • MD5

      201f0b21954f8cf3250e9b3f716eb579

    • SHA1

      c4adf1ae696c92e50113ffa03bd58ca8fd8b4d8a

    • SHA256

      3699604c6442d1e59fb4379801b5e874f95a2840c899f3afd227d8839496cdf3

    • SHA512

      49061d10a7dcd420c282b2957617cd32ff37adc825bcd7ec11a1c05f83f4794dbc330d8761a27f60bf7232e79f5ee782eb523cf64edafa87516163dacbb65f9e

    Score
    1/10
    behavioral3

    • Target

      checksum.txt

    • Size

      141B

    • MD5

      1e4ce22d63bd09686e40e259eaba2fcb

    • SHA1

      47bf0f1e1b8c7524b4c35a41cf08b12f8d68eebc

    • SHA256

      ff36d6ddbdfb6e3a2c823a21c191c791ea077f17b7c348f52d798ebaac399c36

    • SHA512

      403f51f236efa2f6d854bb700c000a1ac6d4a9a7772f19e55abe7e2602824f360c4861f6832cbaa43b7d97de1aa24fccc807198184b84e0ea51ce71f31dc35a6

    Score
    1/10
    behavioral4

    • Target

      napalm_hook.dll

    • Size

      341KB

    • MD5

      e2a68ccb323d103034a0ba6deb9ae1c5

    • SHA1

      c6137d88d67469cf80a15caf65b779e2249ad9d4

    • SHA256

      00151dbec59f369a280112d04b1ed3202323eaa8c487d9da6deba67bf7c89237

    • SHA512

      d92d1b25e598f7a7b956a655e4d6d2a344b0bff517ce650521ecbaffb730314ef2f82ac04842ebdb5f60d49c3a449a5db44bb7d647fc1a9869eec4cd31a00eab

    • SSDEEP

      6144:57oy9Zr+BAF84IC117bTyQdgrmPCeQelz7lWLxnNSdwl2OSd2T:iy9Zrp8smcYmEAexnNb

    Score
    1/10
    behavioral5

MITRE ATT&CK Matrix

Tasks