magniber | 79494b2b76515207a2cf1a29484096cbf884ea4b0e2b834af07beac7879ce714 | Triage

Submit
Reports

Overview

overview

Static

static

Antivirus_...pl.dll

windows7-x64

1

Antivirus_...pl.dll

windows10-2004-x64

Sharing

General

Target

Antivirus_Upgrade_Cloud.680409c94d12.cpl.exe
Size

1.2MB
Sample

220915-n8lmvsdaa9
MD5

b2de8946fb439575f2777559e1a74095
SHA1

1ad2a01982c85718bf883899c3de7d329c8e4057
SHA256

79494b2b76515207a2cf1a29484096cbf884ea4b0e2b834af07beac7879ce714
SHA512

bb6f4f952a8067aab434e45f38565ad3f1d7fb7c78626608ac6fffb08b145ead5d9643e7a88f6cacb68ae45ade644ad6d4be32d4ee291767074006e874147943
SSDEEP

1536:gOY47IHwHDLvujZZmn/tUuNpOLR1aJmvH8GsBjW5BKbOTWgYwJkRG5z:gOt7rHDLvUZmn/t7Npu/GIkRG5z

Score

10^/10

magniber ransomware

Static task

static1

Behavioral task

behavioral1

Sample

Antivirus_Upgrade_Cloud.680409c94d12.cpl.dll

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

Antivirus_Upgrade_Cloud.680409c94d12.cpl.dll

Resource

win10v2004-20220812-en

magniber ransomware

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  Antivirus_Upgrade_Cloud.680409c94d12.cpl.exe
- Size
  
  1.2MB
- MD5
  
  b2de8946fb439575f2777559e1a74095
- SHA1
  
  1ad2a01982c85718bf883899c3de7d329c8e4057
- SHA256
  
  79494b2b76515207a2cf1a29484096cbf884ea4b0e2b834af07beac7879ce714
- SHA512
  
  bb6f4f952a8067aab434e45f38565ad3f1d7fb7c78626608ac6fffb08b145ead5d9643e7a88f6cacb68ae45ade644ad6d4be32d4ee291767074006e874147943
- SSDEEP
  
  1536:gOY47IHwHDLvujZZmn/tUuNpOLR1aJmvH8GsBjW5BKbOTWgYwJkRG5z:gOt7rHDLvUZmn/t7Npu/GIkRG5z
Score

10^/10

magniber ransomware
- Detect magniber ransomware
- Magniber Ransomware
  Ransomware family widely seen in Asia being distributed by the Magnitude exploit kit.
  ransomware magniber
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

magniberransomware

© 2018-2024

Terms | Privacy