General
-
Target
Loader (123).zip
-
Size
88KB
-
MD5
8af750e77d942f7c6ad712b3fc0e116a
-
SHA1
a345976cbd735bba51a8f7531896b10bbf6c2dc9
-
SHA256
6a4fcfa665df00fc6999864ba0979baf7b702366bee72f25e54ab8497ddf4ed4
-
SHA512
7680b16288d7061ab73bd3415a3275d3d8468eff3e9fe93ed3d62e2717811fdb92c0c1a347827a52a08a4cfa7aa9beb1ee06f1d257c1b7a46846d969fd80ff69
-
SSDEEP
1536:EPznw5/Ir67Z296c3qYLfP+lGk3xyOr+/dBsfGwqU/CHujqFd7egBBIfnbK:EPz8Ar61oJ6SWgk3x3r+/Y5l/CHDVE+
Score
10/10
Malware Config
Extracted
Family
umbral
C2
https://discord.com/api/webhooks/1329920564365885513/QoIgOCKNLFA4sABul_Bes4LgikBk1Yiy5mBgCkfBzaW0yujdTDakv5W_NAeetx1oEHur
Signatures
-
Detect Umbral payload 1 IoCs
-
Umbral family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Loader (123).zip
Password: 123
-
Loader.exe
Password: 123
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections