Overview

overview

10

Static

static

10

Umbral.exe

windows7-x64

10

Umbral.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Umbral.exe

  • Size

    230KB

  • MD5

    d36aaa797c0db93779d1e7d23deb0ea1

  • SHA1

    8c43cdc2bbd58bde7e445a9b26a745d091c93c5c

  • SHA256

    d59f40a7e459e4f03cfafe017c0f9433714f8530757a674976a5dcc2bc68618d

  • SHA512

    cf192d81fb909a91b989e50b7c0bb1092f130b3394b4205ce46afa9f2070f17a6461366dbad7bbc721d8449facaf2864203d274afcd95b65d3420070c0adb9e7

  • SSDEEP

    6144:lloZM+rIkd8g+EtXHkv/iD4OGsLCg/7IiR0STTKEJ/b8e1mVni:noZtL+EP8OGsLCg/7IiR0STTKE1r

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1310617325795409993/1ykImeKgv3Vc2UElSv3KNdH7im9MlPSuoF5i7zhbWdBxqWKHpWMuW_lcWK4xs8Wnk9Wz

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Umbral.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections