Overview

overview

10

Static

static

10

Umbral.exe

windows10-2004-x64

10

Umbral.exe

windows10-ltsc_2021-x64

10

Umbral.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Новая сжатая ZIP-папка.zip

  • Size

    91KB

  • MD5

    a332eaa6925dd3d6336893b798e6f277

  • SHA1

    237ce21563041095dab535c061d01abc04d91e4d

  • SHA256

    3400ddef0bbb984b0236598a7e0416fc744bc3897ec4d2a6744f74799aa2f1d4

  • SHA512

    a0efac6d3fe3aa8e241db98b4cad2502cd5da58b836573ccb88512997293bb99d51852d88f46c524ecf1d17cc32ec58c0dd168330f38fe2c1294dc8334c2340b

  • SSDEEP

    1536:HwfRoGjduFLbJirO9TN0U+By6znkBrbXPbrlyruJmHOwEntS8u2uz64QsL/G6Ox1:Huj05b0O9RErMPlyaaUtX4vL/I/t

Score
10/10
umbral

Malware Config

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1354174093003329598/RcMwCs1pKWptqNfuG-bnbpQYHfvzrhYHkp-JQyQL19RLBiyUZN0PzH5agHDx098fepIw

Signatures

  • Detect Umbral payload 1 IoCs
  • Umbral family
    umbral
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Новая сжатая ZIP-папка.zip
    .zip
  • Umbral.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections