Overview

overview

10

Static

static

10

nitro tools/nitro.exe

windows7-x64

10

nitro tools/nitro.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    nitro tools 1.1.rar

  • Size

    100KB

  • MD5

    254aefe10fbebafb6e3b679388c12804

  • SHA1

    3a1f8a9aca3980e1989680ba4ee75bb8bc0b99c4

  • SHA256

    6c6da4b4abbff60565c105df74c4945474e08de70bc0feb7fbb13a157b1fbac2

  • SHA512

    2df66b0c4a3d32385f732191251e50e8abd2872268396cc6e015e3c296db466b4fa84602280c0e791bd1bf29da93ab3defa6cfa25a9f4ffe3223be9151dc9820

  • SSDEEP

    3072:qCrvnGpoocaqG1wRpTywo6cgcR8bUOaPevmlmivqE:lipoL28pTWucR84OaYUmeD

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1278735524693016678/rVaJ6RIY-ETw1qf7ojTh_6jWaVGdg2fBRNXv386RU_0FL_w3ueO8Kp_DbYxSHjD5WZEw

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • nitro tools 1.1.rar
    .rar

    Password: 11

  • nitro tools/nitro.exe
    .exe windows:4 windows x86 arch:x86

    Password: 11

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections