Overview

overview

10

Static

static

10

VwMare/con...fig.js

macos-10.15-amd64

1

VwMare/con...aft.js

macos-10.15-amd64

1

VwMare/con...der.js

macos-10.15-amd64

1

VwMare/con...der.js

macos-10.15-amd64

1

VwMare/con...der.js

macos-10.15-amd64

1

VwMare/con...ter.js

macos-10.15-amd64

1

VwMare/con...der.js

macos-10.15-amd64

1

VwMare/con...der.js

macos-10.15-amd64

1

VwMare/con...der.js

macos-10.15-amd64

1

VwMare/con...der.js

macos-10.15-amd64

1

VwMare/con...ons.js

macos-10.15-amd64

1

VwMare/con...nds.js

macos-10.15-amd64

1

VwMare/con...log.js

macos-10.15-amd64

1

VwMare/con...bug.js

macos-10.15-amd64

1

VwMare/con...dex.js

macos-10.15-amd64

1

VwMare/con...ing.js

macos-10.15-amd64

1

VwMare/con...ext.js

macos-10.15-amd64

1

VwMare/con...ing.js

macos-10.15-amd64

1

VwMare/con...rea.js

macos-10.15-amd64

1

VwMare/con...eId.js

macos-10.15-amd64

1

VwMare/con...tor.js

macos-10.15-amd64

1

VwMare/con...ush.js

macos-10.15-amd64

1

VwMare/con...ush.js

macos-10.15-amd64

1

VwMare/con...ush.js

macos-10.15-amd64

1

VwMare/con...ush.js

macos-10.15-amd64

1

VwMare/con...ush.js

macos-10.15-amd64

1

VwMare/con...ush.js

macos-10.15-amd64

1

VwMare/con...ush.js

macos-10.15-amd64

1

VwMare/con...nfo.js

macos-10.15-amd64

1

VwMare/con...ome.js

macos-10.15-amd64

1

VwMare/con...ush.js

macos-10.15-amd64

1

VwMare/con...ask.js

macos-10.15-amd64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    VwMare.zip

  • Size

    580KB

  • MD5

    16ff5fe8c1ceecf48cc728157a4d3c1e

  • SHA1

    fa45a7f7c5fa7fd9a2967e31975a04f75f052e6f

  • SHA256

    8f4b22364fdf68f082032114054f826d4b63ecda665121ad7b29097689eab528

  • SHA512

    2ada10bedcfc0bace3652c29f80f983a77ca29ff89b522925b4b8706e75ddda0f08e97d36e23299acda01741f2783a0e0c1c9d55d48b1fa53a4ada4d456a8a75

  • SSDEEP

    12288:57kncaBNW7ChUc1g8V1KKldak+54yuKQe/KLI96u8QYZ:57uca/iaUc1vrKKZ6zuKQeCbQYZ

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1336637633069187123/cni2pZnSirmp_aAVBBgAbBaiReZ7XTYDEaJEpPe9h8Hx8ctQbPJs02I6SYHVBAJvEAnb

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • VwMare.zip
    .zip
  • VwMare/VwMareSetup.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • VwMare/config/LICENSE.txt
  • VwMare/config/animation_controllers/biome_detector.ac.json
  • VwMare/config/animations/biome_detector.a.json
  • VwMare/config/entities/biome_detector.entity.bp.json
  • VwMare/config/entities/inventory_stasher.entity.bp.json
  • VwMare/config/entities/struct_meta.entity.bp.json
  • VwMare/config/items/buttons/config.item.json
  • VwMare/config/items/buttons/copy.item.json
  • VwMare/config/items/buttons/cut.item.json
  • VwMare/config/items/buttons/draw_cylinder.item.json
  • VwMare/config/items/buttons/draw_line.item.json
  • VwMare/config/items/buttons/draw_pyramid.item.json
  • VwMare/config/items/buttons/draw_sphere.item.json
  • VwMare/config/items/buttons/mask_picker.item.json
  • VwMare/config/items/buttons/paste.item.json
  • VwMare/config/items/buttons/pattern_picker.item.json
  • VwMare/config/items/buttons/redo.item.json
  • VwMare/config/items/buttons/selection_fill.item.json
  • VwMare/config/items/buttons/selection_hollow.item.json
  • VwMare/config/items/buttons/selection_move.item.json
  • VwMare/config/items/buttons/selection_outline.item.json
  • VwMare/config/items/buttons/selection_stack.item.json
  • VwMare/config/items/buttons/selection_wall.item.json
  • VwMare/config/items/buttons/spawn_glass.item.json
  • VwMare/config/items/buttons/undo.item.json
  • VwMare/config/items/ui/blank.item.json
  • VwMare/config/items/ui/cancel.item.json
  • VwMare/config/items/ui/confirm.item.json
  • VwMare/config/manifest.json
  • VwMare/config/pack_icon.png
    .png
  • VwMare/config/scripts/README.txt
  • VwMare/config/scripts/config.js
  • VwMare/config/scripts/library/Minecraft.js
    .js
  • VwMare/config/scripts/library/classes/blockBuilder.js
    .js
  • VwMare/config/scripts/library/classes/commandBuilder.js
    .js
  • VwMare/config/scripts/library/classes/databaseBuilder.js
  • VwMare/config/scripts/library/classes/eventEmitter.js
    .js
  • VwMare/config/scripts/library/classes/playerBuilder.js
    .js
  • VwMare/config/scripts/library/classes/serverBuilder.js
    .js
  • VwMare/config/scripts/library/classes/structureBuilder.js
    .js
  • VwMare/config/scripts/library/classes/uiFormBuilder.js
    .js
  • VwMare/config/scripts/library/configurations.js
  • VwMare/config/scripts/library/utils/bounds.js
    .js
  • VwMare/config/scripts/library/utils/contentlog.js
  • VwMare/config/scripts/library/utils/debug.js
  • VwMare/config/scripts/library/utils/index.js
  • VwMare/config/scripts/library/utils/multithreading.js
    .js
  • VwMare/config/scripts/library/utils/rawtext.js
  • VwMare/config/scripts/library/utils/scheduling.js
    .js
  • VwMare/config/scripts/library/utils/tickingarea.js
  • VwMare/config/scripts/library/utils/uniqueId.js
    .js
  • VwMare/config/scripts/library/utils/vector.js
    .js
  • VwMare/config/scripts/server/brushes/base_brush.js
  • VwMare/config/scripts/server/brushes/cylinder_brush.js
  • VwMare/config/scripts/server/brushes/erosion_brush.js
    .js
  • VwMare/config/scripts/server/brushes/overlay_brush.js
    .js
  • VwMare/config/scripts/server/brushes/smooth_brush.js
  • VwMare/config/scripts/server/brushes/sphere_brush.js
  • VwMare/config/scripts/server/brushes/structure_brush.js
    .js
  • VwMare/config/scripts/server/commands/biome/biomeinfo.js
    .js
  • VwMare/config/scripts/server/commands/biome/setbiome.js
    .js
  • VwMare/config/scripts/server/commands/brush/brush.js
    .js
  • VwMare/config/scripts/server/commands/brush/mask.js
  • VwMare/config/scripts/server/commands/brush/material.js
  • VwMare/config/scripts/server/commands/brush/range.js
  • VwMare/config/scripts/server/commands/brush/size.js
    .js
  • VwMare/config/scripts/server/commands/brush/tracemask.js
  • VwMare/config/scripts/server/commands/clipboard/clearclipboard.js
  • VwMare/config/scripts/server/commands/clipboard/copy.js
    .js
  • VwMare/config/scripts/server/commands/clipboard/cut.js
    .js
  • VwMare/config/scripts/server/commands/clipboard/paste.js
    .js
  • VwMare/config/scripts/server/commands/command_list.js
  • VwMare/config/scripts/server/commands/generation/cyl.js
    .js
  • VwMare/config/scripts/server/commands/generation/gen.js
  • VwMare/config/scripts/server/commands/generation/gradient.js
    .js
  • VwMare/config/scripts/server/commands/generation/hcyl.js
  • VwMare/config/scripts/server/commands/generation/hpyramid.js
  • VwMare/config/scripts/server/commands/generation/hsphere.js
  • VwMare/config/scripts/server/commands/generation/pyramid.js
  • VwMare/config/scripts/server/commands/generation/sphere.js
    .js
  • VwMare/config/scripts/server/commands/history/clearhistory.js
  • VwMare/config/scripts/server/commands/history/redo.js
    .js
  • VwMare/config/scripts/server/commands/history/undo.js
    .js
  • VwMare/config/scripts/server/commands/misc/blockid.js
    .js
  • VwMare/config/scripts/server/commands/misc/cancel.js
  • VwMare/config/scripts/server/commands/misc/help.js
    .js
  • VwMare/config/scripts/server/commands/misc/kit.js
  • VwMare/config/scripts/server/commands/misc/limit.js
    .js
  • VwMare/config/scripts/server/commands/misc/toggleplace.js
  • VwMare/config/scripts/server/commands/misc/worldedit.js
  • VwMare/config/scripts/server/commands/navigation/ascend.js
    .js
  • VwMare/config/scripts/server/commands/navigation/ceil.js
    .js
  • VwMare/config/scripts/server/commands/navigation/descend.js
    .js
  • VwMare/config/scripts/server/commands/navigation/jumpto.js
  • VwMare/config/scripts/server/commands/navigation/navwand.js
    .js
  • VwMare/config/scripts/server/commands/navigation/thru.js
    .js
  • VwMare/config/scripts/server/commands/navigation/unstuck.js
  • VwMare/config/scripts/server/commands/navigation/up.js
  • VwMare/config/scripts/server/commands/region/center.js
  • VwMare/config/scripts/server/commands/region/faces.js
  • VwMare/config/scripts/server/commands/region/flip.js
    .js
  • VwMare/config/scripts/server/commands/region/gmask.js
  • VwMare/config/scripts/server/commands/region/hollow.js
    .js
  • VwMare/config/scripts/server/commands/region/line.js
    .js
  • VwMare/config/scripts/server/commands/region/move.js
    .js
  • VwMare/config/scripts/server/commands/region/replace.js
  • VwMare/config/scripts/server/commands/region/rotate.js
    .js
  • VwMare/config/scripts/server/commands/region/set.js
  • VwMare/config/scripts/server/commands/region/smooth.js
  • VwMare/config/scripts/server/commands/region/smooth_func.js
    .js
  • VwMare/config/scripts/server/commands/region/stack.js
    .js
  • VwMare/config/scripts/server/commands/region/transform_func.js
    .js
  • VwMare/config/scripts/server/commands/region/wall.js
  • VwMare/config/scripts/server/commands/register_commands.js
    .js
  • VwMare/config/scripts/server/commands/selection/chunk.js
  • VwMare/config/scripts/server/commands/selection/contract.js
  • VwMare/config/scripts/server/commands/selection/count.js
    .js
  • VwMare/config/scripts/server/commands/selection/desel.js
  • VwMare/config/scripts/server/commands/selection/distr.js
    .js
  • VwMare/config/scripts/server/commands/selection/drawsel.js
  • VwMare/config/scripts/server/commands/selection/expand.js
    .js
  • VwMare/config/scripts/server/commands/selection/hpos1.js
  • VwMare/config/scripts/server/commands/selection/hpos2.js
  • VwMare/config/scripts/server/commands/selection/inset.js
  • VwMare/config/scripts/server/commands/selection/outset.js
  • VwMare/config/scripts/server/commands/selection/pos1.js
    .js
  • VwMare/config/scripts/server/commands/selection/pos2.js
    .js
  • VwMare/config/scripts/server/commands/selection/shift.js
  • VwMare/config/scripts/server/commands/selection/trim.js
  • VwMare/config/scripts/server/commands/selection/wand.js
    .js
  • VwMare/config/scripts/server/commands/structure/export.js
    .js
  • VwMare/config/scripts/server/commands/structure/import.js
    .js
  • VwMare/config/scripts/server/commands/tool/superpickaxe.js
  • VwMare/config/scripts/server/commands/tool/tool.js
    .js
  • VwMare/config/scripts/server/commands/utilities/butcher.js
    .js
  • VwMare/config/scripts/server/commands/utilities/calc.js
    .js
  • VwMare/config/scripts/server/commands/utilities/drain.js
    .js
  • VwMare/config/scripts/server/commands/utilities/extinguish.js
  • VwMare/config/scripts/server/commands/utilities/fill.js
    .js
  • VwMare/config/scripts/server/commands/utilities/fillr.js
    .js
  • VwMare/config/scripts/server/commands/utilities/fixlava.js
    .js
  • VwMare/config/scripts/server/commands/utilities/fixwater.js
    .js
  • VwMare/config/scripts/server/commands/utilities/floodfill_func.js
  • VwMare/config/scripts/server/commands/utilities/green.js
  • VwMare/config/scripts/server/commands/utilities/removeabove.js
  • VwMare/config/scripts/server/commands/utilities/removebelow.js
  • VwMare/config/scripts/server/commands/utilities/removenear.js
  • VwMare/config/scripts/server/commands/utilities/replacenear.js
  • VwMare/config/scripts/server/commands/utilities/snow.js
    .js
  • VwMare/config/scripts/server/commands/utilities/thaw.js
    .js
  • VwMare/config/scripts/server/index.js
    .js
  • VwMare/config/scripts/server/modules/assert.js
  • VwMare/config/scripts/server/modules/biome_data.js
    .js
  • VwMare/config/scripts/server/modules/block_parsing.js
    .js
  • VwMare/config/scripts/server/modules/directions.js
    .js
  • VwMare/config/scripts/server/modules/expression.js
    .js
  • VwMare/config/scripts/server/modules/extern/resource_pools.js
    .js
  • VwMare/config/scripts/server/modules/extern/tokenizr.js
    .js
  • VwMare/config/scripts/server/modules/history.js
    .js
  • VwMare/config/scripts/server/modules/hotbar_ui.js
    .js
  • VwMare/config/scripts/server/modules/jobs.js
    .js
  • VwMare/config/scripts/server/modules/mask.js
    .js
  • VwMare/config/scripts/server/modules/pattern.js
    .js
  • VwMare/config/scripts/server/modules/player_util.js
    .js
  • VwMare/config/scripts/server/modules/region_buffer.js
    .js
  • VwMare/config/scripts/server/modules/selection.js
    .js
  • VwMare/config/scripts/server/sessions.js
    .js
  • VwMare/config/scripts/server/shapes/base_shape.js
    .js
  • VwMare/config/scripts/server/shapes/cuboid.js
  • VwMare/config/scripts/server/shapes/cylinder.js
  • VwMare/config/scripts/server/shapes/expression.js
    .js
  • VwMare/config/scripts/server/shapes/pyramid.js
  • VwMare/config/scripts/server/shapes/sphere.js
  • VwMare/config/scripts/server/tools/base_tool.js
    .js
  • VwMare/config/scripts/server/tools/brush_tools.js
  • VwMare/config/scripts/server/tools/button_tools.js
    .js
  • VwMare/config/scripts/server/tools/command_tool.js
    .js
  • VwMare/config/scripts/server/tools/cycler_tool.js
    .js
  • VwMare/config/scripts/server/tools/generation_tools.js
    .js
  • VwMare/config/scripts/server/tools/navigation_tool.js
    .js
  • VwMare/config/scripts/server/tools/picker_tool.js
    .js
  • VwMare/config/scripts/server/tools/region_tools.js
    .js
  • VwMare/config/scripts/server/tools/replacer_tool.js
    .js
  • VwMare/config/scripts/server/tools/selection_tools.js
    .js
  • VwMare/config/scripts/server/tools/stacker_tool.js
    .js
  • VwMare/config/scripts/server/tools/superpickaxe_tool.js
  • VwMare/config/scripts/server/tools/tool_list.js
  • VwMare/config/scripts/server/tools/tool_manager.js
    .js
  • VwMare/config/scripts/server/ui/config_menu.js
    .js
  • VwMare/config/scripts/server/ui/hotbar_menus.js
  • VwMare/config/scripts/server/ui/index.js
  • VwMare/config/scripts/server/ui/paste_tool.js
  • VwMare/config/scripts/server/ui/select_gen_tool.js
  • VwMare/config/scripts/server/ui/select_region_tool.js
  • VwMare/config/scripts/server/ui/types.js
  • VwMare/config/scripts/server/util.js
    .js
  • VwMare/config/texts/bg_BG.lang
  • VwMare/config/texts/cs_CZ.lang
  • VwMare/config/texts/da_DK.lang
  • VwMare/config/texts/de_DE.lang
  • VwMare/config/texts/el_GR.lang
  • VwMare/config/texts/en_GB.lang
  • VwMare/config/texts/en_US.lang
  • VwMare/config/texts/es_ES.lang
  • VwMare/config/texts/es_MX.lang
  • VwMare/config/texts/fi_FI.lang
  • VwMare/config/texts/fr_CA.lang
  • VwMare/config/texts/fr_FR.lang
  • VwMare/config/texts/hu_HU.lang
  • VwMare/config/texts/id_ID.lang
  • VwMare/config/texts/it_IT.lang
  • VwMare/config/texts/ja_JP.lang
  • VwMare/config/texts/ko_KR.lang
  • VwMare/config/texts/languages.json
  • VwMare/config/texts/nl_NL.lang
  • VwMare/config/texts/no_NO.lang
  • VwMare/config/texts/pl_PL.lang
  • VwMare/config/texts/pt_BR.lang
  • VwMare/config/texts/pt_PT.lang
  • VwMare/config/texts/ru_RU.lang
  • VwMare/config/texts/sk_SK.lang
  • VwMare/config/texts/sv_SE.lang
  • VwMare/config/texts/th_TH.lang
  • VwMare/config/texts/tr_TR.lang
  • VwMare/config/texts/uk_UA.lang
  • VwMare/config/texts/zh_CN.lang
  • VwMare/config/texts/zh_TW.lang
  • VwMare/data/bg_BG.lang
  • VwMare/data/cs_CZ.lang
  • VwMare/data/da_DK.lang
  • VwMare/data/de_DE.lang
  • VwMare/data/el_GR.lang
  • VwMare/data/en_GB.lang
  • VwMare/data/en_US.lang
  • VwMare/data/es_ES.lang
  • VwMare/data/es_MX.lang
  • VwMare/data/fi_FI.lang
  • VwMare/data/fr_CA.lang
  • VwMare/data/fr_FR.lang
  • VwMare/data/hu_HU.lang
  • VwMare/data/id_ID.lang
  • VwMare/data/it_IT.lang
  • VwMare/data/ja_JP.lang
  • VwMare/data/ko_KR.lang
  • VwMare/data/languages.json
  • VwMare/data/nl_NL.lang
  • VwMare/data/no_NO.lang
  • VwMare/data/pl_PL.lang
  • VwMare/data/pt_BR.lang
  • VwMare/data/pt_PT.lang
  • VwMare/data/ru_RU.lang
  • VwMare/data/sk_SK.lang
  • VwMare/data/sv_SE.lang
  • VwMare/data/th_TH.lang
  • VwMare/data/tr_TR.lang
  • VwMare/data/uk_UA.lang
  • VwMare/data/zh_CN.lang
  • VwMare/data/zh_TW.lang