Overview

overview

10

Static

static

10

jhn1u7ntf6.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    jhn1u7ntf6 (infected).zip

  • Size

    88KB

  • MD5

    e2481c9a4bab9de047ee78cd73c5a515

  • SHA1

    2a93f1a67f79c7d39a7dbdf30d6c50470222201d

  • SHA256

    fde03fad4f43274464e140fda3ee3661d2470a88786ba0bf7a2a606f39258a5b

  • SHA512

    a3ae3ec6c284704626db69615c3ba7666a9232ed007f63dbfa9837b60326668fe46169482c2c368651b0d7829b00d36e775958842024f9994a21204749b9db7c

  • SSDEEP

    1536:o//RaU8WO0As1X6oUdVsH83i2dGjES4B2Cls3829Ora/qKxTSUJiEf++TouR+LI:U5ab7QZUd+H83i0Xf529ia19SLcTHcc

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1323224754576166912/ngAQr5IRg8PVqlg_GePwPe46g-WcVmFR7-gQu1RH44lVF1JX9hv6jSy8rNgxBAU6LxYx

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • jhn1u7ntf6 (infected).zip
    .zip

    Password: infected

  • jhn1u7ntf6.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections