Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
sws.exe
-
Size
227KB
-
MD5
46fb05503b2ba89656a6b2f95e5572ad
-
SHA1
01dac03ded08fc26c42fd88c77090aa6f4cea70e
-
SHA256
c6e3deb37384306e5bc08d51469e978c001ee54cf0ad8baa59942eda2c849b6b
-
SHA512
7bf112ab9a4df51776c75bd933af3400ec909473389238e13797b61e055236cfacc02d06558061c03a542c3fda0d1575b19646029a2b09c9e45119bf699934a0
-
SSDEEP
6144:eloZM+rIkd8g+EtXHkv/iD43tny5nsAvpOXZkQlK8Zb8e1m8hEi:IoZtL+EP83tny5nsAvpOXZkQlr9
Score
10/10
Malware Config
Extracted
Family
umbral
C2
https://discord.com/api/webhooks/1331257513638887536/9OSX1gMlVliEUbP7sIkSIJlX6LWHFAQpDIJpwnKAch62qgn0-CI4Xc-VOkJND5Gz_WF_
Signatures
-
Detect Umbral payload 1 IoCs
-
Umbral family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
sws.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections