General

  • Target

    https://www.mediafire.com/file/ej4g052361eyw86/zinui_faceit.zip/file

  • Sample

    250630-yg58asssg1

Malware Config

Targets

    • Target

      https://www.mediafire.com/file/ej4g052361eyw86/zinui_faceit.zip/file

    • Detect Umbral payload

    • Umbral

      Umbral stealer is an opensource moduler stealer written in C#.

    • Umbral family

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v16

Tasks