General
-
Target
85eadbe66e59f3512bfed3edd076ed4c.exe
-
Size
231KB
-
MD5
85eadbe66e59f3512bfed3edd076ed4c
-
SHA1
3fac3f7414bd4ced53beb1d89402524a2b9cb510
-
SHA256
921ba78ef5661ee885d93756f28f7e4df163f1ea910af6c68266f856b112ce76
-
SHA512
18ca000aaec36bb3221cd70e042b1dd49ace60ff1469059eb4e27c0af8889d5dc31133827a97a8f146970097b70152e7e65d5286fa0721476c5b8cb06277637e
-
SSDEEP
6144:RloZM3rIkd8g+EtXHkv/iD4iYQ5ClU8e1mmN5i:joZIL+EP8Jo1Ng
Score
10/10
Malware Config
Extracted
Family
umbral
C2
https://discord.com/api/webhooks/1312556972008145028/An6X2LqoEBGwtG4KSm9A-_wDz60gtfV86CSOYjRcWH6q5sc08jR3Zs83_jxxtsMadQe2
Signatures
-
Detect Umbral payload 1 IoCs
-
Umbral family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
85eadbe66e59f3512bfed3edd076ed4c.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections