Overview

overview

10

Static

static

10

CrypticBoo...er.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    CrypticBootstrapper.exe

  • Size

    229KB

  • MD5

    756d710e520f1d3ec62b72cf4174718e

  • SHA1

    956450b12e01a5edbecb995d2d284fc3f22f933d

  • SHA256

    c2ca7672dcc37f2d7d1d0a9ebbdd714b54558b3159033a60314599060b69b23e

  • SHA512

    2572e520eac2e4aca7898d944be108f6b6f3b0eb0ccdc895fa6d4071122832d1c5f72c63ee7c9f9b44e89d8b456af17ef4c5042e4f45ac91bd428ba24f781187

  • SSDEEP

    6144:FloZM+rIkd8g+EtXHkv/iD4oJCllTwk7viTlwsJeImlC8e1mUGDi:HoZtL+EP8aCllTwk7viTlwsJ0C0O

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1335694377128955914/NWLom0D-naamzVck_cVo9zqpx5SUhMaSc5zeTIm5Ui7URjs4tiG40YmbASF598jeVX2h

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • CrypticBootstrapper.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections