Overview

overview

10

Static

static

10

umbralstealer.exe

windows7-x64

10

umbralstealer.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    umbralstealer.exe

  • Size

    229KB

  • MD5

    83b81dda82a62350b52ee97a12d3163a

  • SHA1

    3e7c9d5eda676771071fa77ce8f357b0c32673fa

  • SHA256

    b8e51135b2e0a124ac1103a9c4a6f2353d289ffe99611d990c291ae356950ecf

  • SHA512

    e0d0d47479b19287dbb731b0025c458623fa17e77d506756a7e90289abf0c04faa5e655bd2f521ead68d3c8530cb4ecaf1cb1c48e1fe2e03759affe8c0c4ca04

  • SSDEEP

    6144:lloZM9fsXtioRkts/cnnK6cMlxDKxX8il927De8NhoREb8e1muoi:noZXtlRk83MlxDKxX8il927De8NhoOJ

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discordapp.com/api/webhooks/1255559936801505321/F16TxDgiVb4tKqsfAw7kSt9qou7bWLQdaPsbR0XxnHZlQkf-pez1a9ar1lSBOFFaTwYN

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • umbralstealer.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections