General
-
Target
bkfaf34.exe
-
Size
231KB
-
MD5
447297048bf59e02973e2a92506bcf82
-
SHA1
2ed1aca8f40418d12f99675157b89e1d2d26ebb0
-
SHA256
bb7252177d00b2242b820310ffe3b45f31ee666d85cd6b521f93566c3edc27cc
-
SHA512
34c14cfb4baeab9bc45445f4167c90d1c362df04ab185a69676088011dfb3f9f78e951ece9986f42fb6ec6d31f22f7dc012d2ccbf8cf02ef0261c8aa698eaf76
-
SSDEEP
6144:RloZM+rIkd8g+EtXHkv/iD4VDTfGELns8d42X3Wo1b8e1mOi:joZtL+EP8VDTfGELns8d42X3Wk0
Score
10/10
Malware Config
Extracted
Family
umbral
C2
https://discord.com/api/webhooks/1266849412760731869/Sdaf58eEAN8FusOdQ213bDIrAchOhjmFy_eDf8BG2aDRnXHmtcGPiw0sTqKLC0eJ7Pf_
Signatures
-
Detect Umbral payload 1 IoCs
-
Umbral family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
bkfaf34.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections