Overview

overview

10

Static

static

10

Nursultan ...ck.exe

windows7-x64

10

Nursultan ...ck.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Nursultan Alpha Crac.zip

  • Size

    166KB

  • MD5

    a702e86bc5b2414cbd56640dd49ecd7e

  • SHA1

    57667ea34b124f8c864e307d320935a08524e8cb

  • SHA256

    f1893a01dfcf41766265f2f197163382e7237f2571f37cf0fd83aa990942b299

  • SHA512

    7a7b8ca36ce180e549e9ed3502058cb52f3b62eca31f4d14bca0fc4ce5e2444d66c3c14c17ee3842bd7141d10ae9158b53e2ab88ba76e35a0f104fab0b16a1db

  • SSDEEP

    3072:vcgjKXDllnPXeIzO7DR4Qm6iywGI4XygzXlYSGxQjDUjvkZxrb8m9:vlKruIzuq6hwGIK1PYAMm9

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discordapp.com/api/webhooks/1305215816312295496/rY0Dry8ZlCgHhtUlzGswN815TaT6KbXjX_IAdYGMNd3Mvdmq7PV9Lex48HUyMcaETyeK

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Nursultan Alpha Crac.zip
    .zip
  • Nursultan Alpha Crack.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections