Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

restaddage...ed.exe

windows7-x64

10

restaddage...ed.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    restaddagethrowcorned.exe

  • Size

    230KB

  • MD5

    2523f6fce113a0b9e94bd66d8cf2966b

  • SHA1

    076d32cb0f32d5df6a4dc538beb7796261b76ffc

  • SHA256

    a90ab751bfb8cb4daee6dbb9a595c4af981c9792f245b87f821740fdf3ab28ce

  • SHA512

    c71d6c35be27bc90cd525b156e9bb016dab578740fcce3357382b52a1e4b0e4c42d55dd57e313c1f1db285d481f4e6a6a871da389b6d4076897553856aaaf5d5

  • SSDEEP

    6144:eloZM+rIkd8g+EtXHkv/iD4xfQtxoj8e1mdi:IoZtL+EP85gxoD

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1335579296168677427/9LqHJjwqIZwrPU0xd2FMLdQqVxYJxToJJxSNRDB2t6_oQEmXOtpluiaF922h2aOifQ8h

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • restaddagethrowcorned.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.