General
Static task
static1
URLScan task
urlscan1
Malware Config
Extracted
Family
umbral
C2
https://discord.com/api/webhooks/1234227911570231390/0z3FMS1OCOm4Dimw1zroCZEdttv5BdfkYDJmjaCIZnKZ5CxWh2wDpajd40DrN9mMEQHM
Targets
-
-
Detect Umbral payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-