General
-
Target
Wave.exe
-
Size
284KB
-
MD5
94859e013cc39676f0b539f75481a34a
-
SHA1
8b92d4aefc0bbfb8a145a7d709d03c2591280b33
-
SHA256
edbfb6dab0d96e3c95a6bdfbe15c338a85a55c66d01115094674ac9f0eb91b18
-
SHA512
a2fc0e7de1135d4573623804d7eadda97c7f59efb760008292547b75c51042dccf8e38ff102a93273de8141e43b9e053bc8416780b7d199a6281f83ce3e61a48
-
SSDEEP
6144:iloZM+rIkd8g+EtXHkv/iD45THRtxdT8e1mBzWibGEIZwT1GWVW:soZtL+EP85bbxtWqxoGf
Score
10/10
Malware Config
Extracted
Family
umbral
C2
https://discord.com/api/webhooks/1272290504427700294/-MS6I95U-p_v_3pmXzGFD4VtP3qvUy7lyZpJbZ10M_5wUQcSuwJr-tfFlcwJLM0hEhKE
Signatures
-
Detect Umbral payload 1 IoCs
-
Umbral family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Wave.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections