General
-
Target
owo_huntbot.rar
-
Size
89KB
-
MD5
550425a30f0b1edc726c18c3f0f0363b
-
SHA1
daeee551b9689ab716bbc6c903b236fcbc559e8e
-
SHA256
a0b1850a85ac0daf903f13a719423de6a27dd8a06f350ab5e339473e0dc9bf71
-
SHA512
11d4ebf1e7d3999f3a799f9e293cfbf4ad5f64e2789e918e186899b32de7409e99dba2e1362a584c88a8339dc95f6c404864ece990c70930d19280e2646d5318
-
SSDEEP
1536:DHyhpPPU/GVf5wtlp+L2k6VaTBb7wP1Y6siPBHU7YKEHab9+fIWudyzmjxszDv0i:D8oGR5wtAZ64Vbq5hPe7uHu+UGmlOv0i
Score
10/10
Malware Config
Extracted
Family
umbral
C2
https://discord.com/api/webhooks/1235634147129692262/ObP_Z-hBmM35S4-i4cnJTRVS17jaNnTGd1ymfWSoZcBwM-ytBOhE6NKDY7eTsJpF0hgY
Signatures
-
Detect Umbral payload 1 IoCs
-
Umbral family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
owo_huntbot.rar
-
owo huntbot.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections