Overview

overview

10

Static

static

10

nezur upda...st.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    nezur update open first.exe

  • Size

    229KB

  • MD5

    2e5281fab74e8820fbc43f452e58ee3c

  • SHA1

    7f65af8151e0bb4d151151ca60a6b4424ab14f5b

  • SHA256

    586244c03ace07d74308daba5ce9d49ac2cde473e6c686aadc6e4b2627e5093c

  • SHA512

    0a1125678e89d2f4124980a4ed42effea78d0857ada7eb76a79c97275ae8df2ab8dee71f24d7376fe1c08e28e8739ddbb49322e1d1ee70e48a536e2165d97708

  • SSDEEP

    6144:tloZM+rIkd8g+EtXHkv/iD4+DYlywvrYshkijD6/JN8e1mmUdei:voZtL+EP8+DYlywvrYshkijD6Hvk

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1253536006817185873/eNz89U1wfPNC4NnNMAGQ9QK2ByqGYuudckfLjuMnfFIx5Hhk4naktKCA2i3jqQSochdc

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • nezur update open first.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections