Overview

overview

10

Static

static

10

Umbral.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Umbral.exe

  • Size

    496KB

  • MD5

    2989b8a064354c5fa729d713b84df30e

  • SHA1

    a8f8065b500258e7b768c59f9c6f57932d4bcfa1

  • SHA256

    bbdd54660f7cfee0d7ec0d5afa51900142c029ae48e71f8d4f834cac00b1761b

  • SHA512

    0d5b22d39dff8030755bb120c598aec238549100fb53c40468be7f6adb036867bf464fc9c71b204824f7042faa18cbb90ab199ce450844371b42b79c22fb3e94

  • SSDEEP

    12288:VoZtL+EP8jNMGxfEY3tmfh8ItWCw8ZOG:jI85MGxfEY3tmfh8ItDwaO

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1270049148514730095/IR8wg5u43Pwp7dfJhyHN21ljXCCkzpAQry61VjfvTdxGZeHSvggWRaWZnQiWN4vEx0gz

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Umbral.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections