Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

CrypticBoo...er.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    CrypticBootstrapper.exe

  • Size

    229KB

  • MD5

    756d710e520f1d3ec62b72cf4174718e

  • SHA1

    956450b12e01a5edbecb995d2d284fc3f22f933d

  • SHA256

    c2ca7672dcc37f2d7d1d0a9ebbdd714b54558b3159033a60314599060b69b23e

  • SHA512

    2572e520eac2e4aca7898d944be108f6b6f3b0eb0ccdc895fa6d4071122832d1c5f72c63ee7c9f9b44e89d8b456af17ef4c5042e4f45ac91bd428ba24f781187

  • SSDEEP

    6144:FloZM+rIkd8g+EtXHkv/iD4oJCllTwk7viTlwsJeImlC8e1mUGDi:HoZtL+EP8aCllTwk7viTlwsJ0C0O

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1335694377128955914/NWLom0D-naamzVck_cVo9zqpx5SUhMaSc5zeTIm5Ui7URjs4tiG40YmbASF598jeVX2h

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • CrypticBootstrapper.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.