General

  • Target

    everything.exe

  • Size

    231KB

  • MD5

    c230d0ffbb5ba00f2bc8a3e51c831d30

  • SHA1

    ba14e05c5b2f9bd82895598e4e037971cb88cb75

  • SHA256

    cf7b9914e5b25efd7b449a9426d8d2cb570440da613b0bf7b258b425d2c6a7a0

  • SHA512

    d4930c2f78d55037819d276e4321d43b759fb063834fd6b0e494730bad35f6815c2665106a3a976e8902b58b058a09ab3d6369c56dcc16aebfa487dbf66ef318

  • SSDEEP

    6144:RloZMArIkd8g+EtXHkv/iD4av2h3tW+xdkt/qqfsCb8e1mKi:joZHL+EP8av2h3tW+xdkt/qqfPI

Score
10/10

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1285683399893192828/AEw6MF303hXfjbK02zpyu0AdvR_sfhAsyG-DlzKXxhfLpxTE1nBfdIM4YwXm9U-_Cpnc

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • everything.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.