c9b5dec18caf8f389fd9b0939f333bf2_magniber_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

c9b5dec18caf8f389fd9b0939f333bf2_magniber_JC.exe
Size

2.0MB
MD5

c9b5dec18caf8f389fd9b0939f333bf2
SHA1

9cead95f6a4aca91f0d5a6cebaf93e3ab0da52db
SHA256

4a09fbf92f993615f31f38732f94ea2585e3a8a87cc47d99f7e43349470870ae
SHA512

9601ede2b2a147e7be7617404fdf5885b94d6e1aa8c80cb5a4a816b55fdcd331edd6b0f6d33208236e72e7c7c01851e40587b4b3ba76d551dc90696892624931
SSDEEP

49152:9AX7T2Jd9582KorzvGzpeXkz24bIpr/T+GVZTPETLwfTbwF46U8paMn4nf7:K7T+d9582KorSzpeXV4bMBMAf7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c9b5dec18caf8f389fd9b0939f333bf2_magniber_JC.exe

Files

c9b5dec18caf8f389fd9b0939f333bf2_magniber_JC.exe
.exe windows x86

5a3a3204013788c67882f9b49ef17af6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetCrackUrlA
InternetConnectA
HttpOpenRequestA
HttpSendRequestA
InternetReadFile
InternetCloseHandle
InternetOpenA

kernel32

EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
InitializeCriticalSection
CreateThread
GetModuleHandleA
SetEvent
CreateEventA
GetCurrentProcessId
CreateFileMappingA
MapViewOfFile
CloseHandle
WaitForSingleObject
LocalFree
lstrlenA
SetEndOfFile
CreateFileW
SetEnvironmentVariableA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
SetCurrentDirectoryA
GetCurrentDirectoryA
ReadFile
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetTimeZoneInformation
SetFilePointer
FlushFileBuffers
GetConsoleMode
UnmapViewOfFile
DeleteCriticalSection
OutputDebugStringA
LoadLibraryA
GetProcAddress
FreeLibrary
HeapFree
GetConsoleCP
GetFileType
SetHandleCount
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetOEMCP
GetACP
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
HeapSize
GetStdHandle
WriteFile
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStringTypeW
GetStringTypeA
CompareStringW
CompareStringA
GetDateFormatA
GetTimeFormatA
GetCPInfo
InterlockedDecrement
MulDiv
GetTickCount
FileTimeToSystemTime
GetFileTime
CreateFileA
GetSystemDirectoryA
SetUnhandledExceptionFilter
GetCurrentProcess
GetModuleFileNameA
VirtualQuery
QueryPerformanceCounter
QueryPerformanceFrequency
SetThreadPriority
GetThreadPriority
GetCurrentThread
GetVersionExA
FindClose
FindFirstFileA
Sleep
VirtualProtect
FindNextFileA
DeleteFileA
IsBadWritePtr
GetLastError
OpenFileMappingA
CopyFileA
MoveFileExA
SetErrorMode
MultiByteToWideChar
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalFree
GetCommandLineA
CreateMutexA
InterlockedIncrement
GetWindowsDirectoryA
GetFileSize
WideCharToMultiByte
InterlockedExchange
InterlockedCompareExchange
GetLocaleInfoA
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
RaiseException
RemoveDirectoryA
CreateDirectoryA
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
HeapAlloc
GetProcessHeap
GetStartupInfoA
GetDriveTypeA
GetFullPathNameA
HeapReAlloc
ExitThread
ResumeThread
GetLocalTime
ExitProcess
LCMapStringA
LCMapStringW

user32

FillRect
DrawTextA
MessageBoxA
GetWindowLongA
GetMessageA
IsDialogMessageA
MoveWindow
GetWindowRect
SystemParametersInfoA
DispatchMessageA
EndPaint
GetSysColorBrush
GetSystemMetrics
RegisterWindowMessageA
RegisterClassA
PostMessageA
IsWindow
PostThreadMessageA
DestroyWindow
LoadIconA
LoadCursorA
RegisterClassExA
AdjustWindowRect
CreateWindowExA
SetWindowLongA
SendMessageA
ShowWindow
GetWindowTextA
DefWindowProcA
GetFocus
GetDlgCtrlID
GetDlgItem
SetFocus
GetClientRect
SetCaretPos
ShowCaret
CreateCaret
DestroyCaret
HideCaret
GetCursor
ClientToScreen
ReleaseDC
GetDC
DrawTextExA
OffsetRect
AdjustWindowRectEx
GetWindowInfo
SetTimer
SetWindowTextA
GetDesktopWindow
MessageBoxW
GetSysColor
CreateWindowExW
SetCursor
GetCursorPos
SetForegroundWindow
GetWindowPlacement
ReleaseCapture
ScreenToClient
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
EndDialog
DialogBoxIndirectParamA
SetCapture
WindowFromPoint
PeekMessageA
GetClipboardData
DefWindowProcW
InvalidateRect
IsWindowVisible
IsIconic
ChangeDisplaySettingsA
EnumWindows
EnumDisplaySettingsA
CreateCursor
GetActiveWindow
DestroyCursor
BeginPaint
TranslateMessage

gdi32

GetTextMetricsA
GetTextExtentPoint32A
GetStockObject
SelectObject
SetBkMode
SetTextColor
CreateSolidBrush
DeleteObject
SelectClipRgn
CreateRectRgn
DeleteDC
CreateCompatibleDC
GetObjectA
CreateFontIndirectA
CreateFontA
GetDeviceCaps
CreateDIBSection
TextOutA
IntersectClipRect

shell32

ShellExecuteA

winmm

timeGetTime
PlaySoundA
timeEndPeriod
timeBeginPeriod
mixerClose
mixerGetControlDetailsA
mixerGetLineControlsA
mixerGetLineInfoA
mixerGetDevCapsA
mixerOpen
mixerSetControlDetails

wsock32

__WSAFDIsSet
select
WSACleanup
closesocket
recv
WSAStartup
socket
inet_ntoa
send
WSAGetLastError
connect
htons
gethostbyname
ioctlsocket

advapi32

RegOpenKeyA
RegDeleteValueA
RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA

ole32

CoCreateInstance
CoInitialize

oleaut32

SysFreeString
VariantClear
SysAllocString

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 280KB - Virtual size: 279KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 36KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5a3a3204013788c67882f9b49ef17af6

Headers

File Characteristics

Imports

wininet

kernel32

user32

gdi32

shell32

winmm

wsock32

advapi32

ole32

oleaut32

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 280KB - Virtual size: 279KB

.data Size: 36KB - Virtual size: 265KB

.rsrc Size: 160KB - Virtual size: 160KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 280KB - Virtual size: 279KB

.data
Size: 36KB - Virtual size: 265KB

.rsrc
Size: 160KB - Virtual size: 160KB