umbral | 77c36759f491c70cbc9db23cf3f9f825c5e8c8329ee8c0e728c5f83ae86652ec | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

Steak-V1.1.4.zip

windows10-2004-x64

8

Sharing

General

Target

Steak-V1.1.4.zip
Size

18.4MB
Sample

250210-xjx42a1qhl
MD5

3b20397f0ab0492bcea3e092ed31da6c
SHA1

b05926779f7bfb6c839b9d8b6f42026923119fd9
SHA256

77c36759f491c70cbc9db23cf3f9f825c5e8c8329ee8c0e728c5f83ae86652ec
SHA512

008213a6fcb8c82b5e41be938a81ead574ffebce51af65f45aa351a606e0b5b45210782a27abdf1e4bbc372d94f26e4c13e40c923144ae5d9081be27e37c52ab
SSDEEP

393216:CbN2JkpT8gd7MZf54T0bENgMVyaV/UD6EsimCFnktaaiAP9j:CB2JkBpVIf5JOR8GEaYkziAZ

Score

10^/10

umbral discovery

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Steak-V1.1.4.zip

Resource

win10v2004-20250207-en

windows10-2004-x64

3 signatures

900 seconds

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1338579008656248834/7t8n8_UzpuVW02KhBuGZucDv8tP4eWmfnqKQyiYO5ro6v32pAK1R_jvOP3hwJw8_eStC

Targets

- Target
  
  Steak-V1.1.4.zip
- Size
  
  18.4MB
- MD5
  
  3b20397f0ab0492bcea3e092ed31da6c
- SHA1
  
  b05926779f7bfb6c839b9d8b6f42026923119fd9
- SHA256
  
  77c36759f491c70cbc9db23cf3f9f825c5e8c8329ee8c0e728c5f83ae86652ec
- SHA512
  
  008213a6fcb8c82b5e41be938a81ead574ffebce51af65f45aa351a606e0b5b45210782a27abdf1e4bbc372d94f26e4c13e40c923144ae5d9081be27e37c52ab
- SSDEEP
  
  393216:CbN2JkpT8gd7MZf54T0bENgMVyaV/UD6EsimCFnktaaiAP9j:CB2JkBpVIf5JOR8GEaYkziAZ
Score

8^/10

discovery
- Downloads MZ/PE file
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy