General
-
Target
Umbral.exe
-
Size
229KB
-
MD5
e91e7d0ed8c652cc6d31b843ce779610
-
SHA1
30100ace6bde410478ab46fd06ffb28759fbbd78
-
SHA256
de9370ce0b17b04fa1deb6403251580f6cf32035659da7ed57756c08c690d666
-
SHA512
9ccda4488fc512344ce51b6173da48902058df858ff82edbe906ef7c116800074823fc179f69ad687d4196d21bf4683ca5dc4a142f69a127714ae3dc37aa1130
-
SSDEEP
6144:lloZM9rIkd8g+EtXHkv/iD4UZ7coOJBi0HaIJtMByb8e1mF56Yi:noZOL+EP8UZ7coOJBi0HaIJtMgs50
Score
10/10
Malware Config
Extracted
Family
umbral
C2
https://discord.com/api/webhooks/1265599725864751124/kq2aCEcilzOe4g2D7AB6iQUW1gHJ6M7tRa2cn8JdlNbUcphaqNVxYRxknmdOBnbJxAr5
Signatures
-
Detect Umbral payload 1 IoCs
-
Umbral family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Umbral.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections