General

  • Target

    733c9f0a21cb6a4386496fa43fd1b2255e07adec398ea5a296523ffbacf83277N

  • Size

    227KB

  • MD5

    a9c85ce4900aa26ca173db8d18423290

  • SHA1

    913ff9008ac363798994a5db576357623c3abb6b

  • SHA256

    733c9f0a21cb6a4386496fa43fd1b2255e07adec398ea5a296523ffbacf83277

  • SHA512

    2d2eb846ea057068ce639c39494adea686bbc76b7cce0eb4c0ea7396f0048bb3fafe3d9b24421d906d321576b8f3ac6517d4fa69886fecf958690b8fdf844cc9

  • SSDEEP

    6144:eloZM+rIkd8g+EtXHkv/iD4mI1UOsTPkhFQu//O6vb8e1m0Li:IoZtL+EP8mI1UOsTPkhFQu//OAg

Score
10/10

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1282055476837879861/29zT8D_I9Jr87Dskp8KAlHzBq4n7Wm1c9jw1R8LwI4OONQmvMGmGbeoEjhxhZcNokYu7

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 733c9f0a21cb6a4386496fa43fd1b2255e07adec398ea5a296523ffbacf83277N
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections