Overview

overview

10

Static

static

10

MalwareBazaar.exe

windows7-x64

10

MalwareBazaar.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MalwareBazaar.17

  • Size

    227KB

  • MD5

    ef323a7483653ffb1fc4ff036576e065

  • SHA1

    80e63b57a7ad6394f778c7aa5a855520f1533589

  • SHA256

    824d0e2ebaa40b7bca3bc0657338a13df78121172fe52e604f45c8033ab7537a

  • SHA512

    04785049f73acbacc2b0ea89e2bbc547ac6fa302eac4cbbd895f8d6a873c8b0dcfa8a8762d90847c9a0bf28862e12b294cb70f073019a6046bac104b9189ba7e

  • SSDEEP

    6144:eloZM3fsXtioRkts/cnnK6cMluDdCFzQEb0CzFQMpnhb8e1msQci:IoZ1tlRk83MluDdCFzQEb0CzFQMpZ3K

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://ptb.discord.com/api/webhooks/1193833046810566716/Ip5p47J2qEw7d2YvXLGh3HLrizvUKpbZJnMXQxzQS4N9EYMFmhbB3hhBZhMwKm0ApaPL

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • MalwareBazaar.17
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections