e8bf8620c105598afc4fc91f85b63c8f_magniber_JC[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

e8bf8620c105598afc4fc91f85b63c8f_magniber_JC.exe
Size

10.0MB
MD5

e8bf8620c105598afc4fc91f85b63c8f
SHA1

b23e205a9c345ff28ca113cea968e89f169dd72f
SHA256

d74086b64ee959e7e8fdfa08438b2283c5bab25d8f1fd10d83812d5615f49f03
SHA512

bc11e58437ceee907fed07f70fada39e088c70ea1e1df875039a48d8e6884cd1baea21d70e311ada082bfdf7fc1255cea213849543a2c6f0d3a4f2218c5d71e7
SSDEEP

196608:YstDH+1EOJy6R9z+AJofewbiHk2122SYY+EuwElfjnJRuIBG:YwHSE27h2sHTk2SYYWXLPBG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e8bf8620c105598afc4fc91f85b63c8f_magniber_JC.exe

Files

e8bf8620c105598afc4fc91f85b63c8f_magniber_JC.exe
.exe windows x86

4e7f6c81eb7003e36e0829aca4aee8fb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
DeleteCriticalSection
HeapDestroy
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionAndSpinCount
HeapFree
Sleep
WaitForSingleObject
MulDiv
InterlockedIncrement
InterlockedDecrement
SetCurrentDirectoryW
SetConsoleCtrlHandler
SetEnvironmentVariableW
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExW
FindFirstFileExA
GetTimeZoneInformation
EnumSystemLocalesW
IsValidLocale
GetTimeFormatW
GetDateFormatW
WriteConsoleW
GetDriveTypeW
GetACP
ExitProcess
GetStdHandle
SetStdHandle
QueryPerformanceFrequency
VirtualQuery
VirtualAlloc
HeapQueryInformation
GetCommandLineA
FreeLibraryAndExitThread
ExitThread
CreateThread
ReadConsoleW
GetConsoleMode
GetConsoleCP
SetFilePointerEx
GetFileType
GetFullPathNameA
InterlockedFlushSList
InterlockedPushEntrySList
RtlUnwind
GetCPInfo
LCMapStringW
GetStringTypeW
OutputDebugStringW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
LocalUnlock
LocalLock
ReplaceFileW
GetDiskFreeSpaceW
SearchPathW
GetProfileIntW
VerifyVersionInfoW
VerSetConditionMask
SystemTimeToTzSpecificLocalTime
GetFileTime
FindResourceW
LoadResource
LockResource
SizeofResource
CreateFileW
SetFilePointer
WriteFile
CloseHandle
GetCurrentThreadId
FindResourceA
GetCommandLineW
LocalFree
GetCurrentProcessId
GetModuleHandleW
SetFileAttributesW
FreeLibrary
TlsGetValue
TlsSetValue
MultiByteToWideChar
GetTickCount
GetProcAddress
LoadLibraryW
FormatMessageW
DeleteFileW
WideCharToMultiByte
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
CreateDirectoryW
GetFileAttributesW
ResumeThread
GetExitCodeProcess
LoadLibraryA
FormatMessageA
GetTempFileNameA
GetTempFileNameW
DeleteFileA
CopyFileA
CopyFileW
MoveFileA
MoveFileW
GetFileAttributesExW
ReadFile
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleExW
GetTempPathA
GetTempPathW
GetCurrentDirectoryA
GetCurrentDirectoryW
GetSystemDirectoryA
GetSystemDirectoryW
GetSystemWow64DirectoryW
GetWindowsDirectoryA
GetWindowsDirectoryW
GetSystemWindowsDirectoryW
GetVersionExW
GetSystemInfo
GetSystemDefaultLCID
GetUserDefaultLCID
GetCurrentProcess
GetNativeSystemInfo
GetLocaleInfoW
GetEnvironmentVariableW
CreateProcessW
FindFirstFileW
FindNextFileW
RemoveDirectoryW
FindClose
TlsAlloc
EnterCriticalSection
LeaveCriticalSection
GlobalLock
GlobalUnlock
OutputDebugStringA
SetLastError
FreeResource
GetModuleHandleA
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomW
GlobalFindAtomW
GlobalAlloc
GlobalSize
GlobalFree
SetEvent
CreateEventW
SetThreadPriority
SuspendThread
GetCurrentThread
lstrcmpA
CompareStringA
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GlobalFlags
GlobalGetAtomNameW
GetAtomNameW
InitializeCriticalSection
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
CompareStringW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
FileTimeToSystemTime
SystemTimeToFileTime
GetThreadLocale
FlushFileBuffers
GetFileSize
GetFullPathNameW
GetShortPathNameW
GetVolumeInformationW
LockFile
SetEndOfFile
UnlockFile
DuplicateHandle
lstrcmpiW
GetStringTypeExW
lstrcpyW
FindResourceExW
SetErrorMode
FileTimeToLocalFileTime
GetFileSizeEx

user32

LoadIconW
ReleaseDC
GetDC
DrawFocusRect
FillRect
InvalidateRect
PostMessageW
GetClientRect
IsRectEmpty
SetWindowTextW
IsIconic
UnregisterClassW
GetWindowRect
EndDialog
UnhookWindowsHookEx
SetWindowsHookExW
PostQuitMessage
LoadBitmapW
CopyRect
ExitWindowsEx
LoadImageW
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
GetWindowDC
BeginPaint
EndPaint
ClientToScreen
ScreenToClient
LoadMenuW
GetSubMenu
RegisterWindowMessageW
DispatchMessageW
PeekMessageW
GetMessagePos
GetMessageTime
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
IsMenu
IsChild
DestroyWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetDlgItem
GetDlgCtrlID
SetFocus
GetKeyState
GetMenu
SetMenu
GetMenuItemID
GetMenuItemCount
TrackPopupMenu
TrackPopupMenuEx
SetActiveWindow
GetForegroundWindow
SetForegroundWindow
ValidateRect
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetPropW
SetCursor
RemovePropW
GetWindowTextW
GetWindowTextLengthW
AdjustWindowRectEx
MessageBoxW
MapWindowPoints
EqualRect
GetWindowLongW
SetWindowLongW
GetClassLongW
GetClassNameW
GetTopWindow
GetLastActivePopup
GetWindow
CallNextHookEx
SetScrollInfo
GetScrollInfo
WinHelpW
MonitorFromWindow
GetMonitorInfoW
ShowWindow
MoveWindow
SetDlgItemInt
GetDlgItemInt
SetDlgItemTextW
GetDlgItemTextW
CheckDlgButton
CheckRadioButton
IsDlgButtonChecked
SendDlgItemMessageW
SetRect
ScrollWindowEx
IsDialogMessageW
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
WindowFromPoint
GetMenuStringW
GetMenuState
InsertMenuW
AppendMenuW
RemoveMenu
IntersectRect
GetMessageW
TranslateMessage
GetActiveWindow
GetWindowThreadProcessId
NotifyWinEvent
CreateDialogIndirectParamW
GetNextDlgTabItem
GetDesktopWindow
ShowOwnedPopups
SendDlgItemMessageA
SetRectEmpty
GetKeyNameTextW
MapVirtualKeyW
RealChildWindowFromPoint
DestroyMenu
GetMenuItemInfoW
SystemParametersInfoW
CopyImage
GetSysColorBrush
GetAsyncKeyState
MapDialogRect
GetDialogBaseUnits
WaitMessage
DeleteMenu
DestroyIcon
CharUpperW
TrackMouseEvent
CreatePopupMenu
GetMenuDefaultItem
BringWindowToTop
LoadAcceleratorsW
TranslateAcceleratorW
InsertMenuItemW
GetFocus
UnpackDDElParam
ReuseDDElParam
GetNextDlgGroupItem
DrawIconEx
GetIconInfo
MessageBeep
EnableScrollBar
HideCaret
InvertRect
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongW
SetWindowRgn
SetParent
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateW
DrawEdge
DrawFrameControl
IsZoomed
GetSystemMenu
SetCursorPos
CopyIcon
FrameRect
UnionRect
UpdateLayeredWindow
MonitorFromPoint
GetComboBoxInfo
PostThreadMessageW
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
DestroyAcceleratorTable
CopyAcceleratorTableW
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuW
RegisterClipboardFormatW
CharUpperBuffW
IsClipboardFormatAvailable
GetUpdateRect
GetDCEx
EnumChildWindows
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
SubtractRect
SendNotifyMessageW
MonitorFromRect
InSendMessage
CreateMenu
WindowFromDC
GetWindowRgn
DestroyCursor
GetTabbedTextExtentW
LoadCursorW
UpdateWindow
DrawIcon
IsWindowEnabled
GetSystemMetrics
GetPropW
GetMenuBarInfo
EnableWindow
IsWindow
RedrawWindow
SetTimer
GetSysColor
OffsetRect
KillTimer
SendMessageW
GetParent
PtInRect
SetCapture
GetCapture
ReleaseCapture
InflateRect
GetCursorPos

gdi32

GetROP2
SetAbortProc
AbortDoc
EndPage
StartPage
EndDoc
DeleteMetaFile
CreateMetaFileW
CloseMetaFile
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
SetPaletteEntries
ExtFloodFill
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
RoundRect
OffsetRgn
GetRgnBox
StretchDIBits
GetCharWidthW
LPtoDP
CreateRoundRectRgn
GetBkMode
Polygon
CreatePolygonRgn
GetTextColor
Ellipse
GetObjectW
GetCurrentObject
SetPixel
BitBlt
CreatePen
GetTextExtentPoint32W
CreateCompatibleDC
CreateCompatibleBitmap
GetDeviceCaps
CreateFontW
CreateFontIndirectW
CreateSolidBrush
Rectangle
CreateEllipticRgn
SetDIBColorTable
CreateDIBSection
StretchBlt
GetDIBits
GetTextCharsetInfo
EnumFontFamiliesW
GetNearestColor
Polyline
GetPolyFillMode
CreateDIBitmap
GetBkColor
RealizePalette
GetStretchBltMode
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
EnumFontFamiliesExW
GetTextMetricsW
DPtoLP
SetRectRgn
PatBlt
GetMapMode
CreateRectRgnIndirect
CombineRgn
CreateDCW
CopyMetaFileW
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
PolylineTo
PolyBezierTo
ExtTextOutW
TextOutW
MoveToEx
ExtCreatePen
SetArcDirection
SelectClipPath
PolyDraw
ArcTo
StartDocW
SetColorAdjustment
ModifyWorldTransform
SetWorldTransform
EnumMetaFile
PlayMetaFileRecord
SetTextJustification
SetTextAlign
SetTextColor
SetTextCharacterExtra
SetStretchBltMode
SetROP2
GetTextAlign
GetLayout
SetLayout
SetMapMode
SetGraphicsMode
SetMapperFlags
SetBkMode
SetBkColor
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
PlayMetaFile
OffsetClipRgn
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetCurrentPositionEx
GetClipRgn
GetClipBox
ExcludeClipRect
Escape
DeleteObject
DeleteDC
CreateRectRgn
CreatePatternBrush
CreateHatchBrush
CreateDIBPatternBrushPt
CreateBitmap
GetTextFaceW
GetSystemPaletteEntries
SetPolyFillMode

shell32

SHAppBarMessage
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc
ShellExecuteW
DragFinish
DragQueryFileW
ShellExecuteExW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetFileInfoW
ExtractIconW
SHAddToRecentDocs
CommandLineToArgvW

msimg32

TransparentBlt
AlphaBlend

comctl32

ord17
_TrackMouseEvent

shlwapi

PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
StrFormatKBSizeW
PathRemoveExtensionW
PathFindFileNameW
PathFindExtensionW
PathCombineW

uxtheme

GetThemePartSize
DrawThemeText
DrawThemeParentBackground
GetThemeColor
GetCurrentThemeName
IsThemeBackgroundPartiallyTransparent
GetWindowTheme
GetThemeSysColor
DrawThemeBackground
CloseThemeData
OpenThemeData
IsAppThemed

ole32

WriteFmtUserTypeStg
ReadFmtUserTypeStg
OleDuplicateData
ReleaseStgMedium
OleRegGetUserType
SetConvertStg
CoUninitialize
CoInitializeEx
CoCreateInstance
CoInitialize
CoDisconnectObject
CLSIDFromString
CreateStreamOnHGlobal
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
PropVariantCopy
OleSetMenuDescriptor
OleLockRunning
StgCreateDocfile
StgOpenStorage
StgOpenStorageOnILockBytes
StgIsStorageFile
CreateFileMoniker
CreateILockBytesOnHGlobal
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
WriteClassStg
OleRegEnumVerbs
StgCreateDocfileOnILockBytes
CreateGenericComposite
CreateItemMoniker
WriteClassStm
OleCreate
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreateLinkToFile
OleCreateFromFile
OleLoad
OleSave
OleSaveToStream
OleSetContainedObject
OleGetIconOfClass
GetHGlobalFromILockBytes
OleRun
CreateDataAdviseHolder
CreateOleAdviseHolder
GetRunningObjectTable
OleIsRunning
CoGetMalloc
OleQueryLinkFromData
OleQueryCreateFromData
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoGetClassObject
CoRegisterClassObject
CoRevokeClassObject
CoRegisterMessageFilter
CLSIDFromProgID
ReadClassStg
CreateBindCtx
CoTreatAsClass
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
IIDFromString
StringFromGUID2
OleRegGetMiscStatus
CoCreateGuid

oleaut32

SafeArrayAllocData
SafeArrayCreate
SafeArrayDestroyDescriptor
SafeArrayAllocDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SafeArrayDestroy
SafeArrayRedim
SafeArrayGetDim
SafeArrayGetElemsize
SysReAllocStringLen
SysAllocString
SysAllocStringLen
VariantInit
VariantClear
VariantChangeType
SysFreeString
SysStringByteLen
SafeArrayDestroyData
VarDecFromStr
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
SysAllocStringByteLen
VarBstrFromDec
VarBstrFromDate
VarBstrFromCy
VarCyFromStr
VarDateFromStr
VariantCopy
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound

urlmon

URLDownloadToFileW

gdiplus

GdiplusShutdown
GdipCreateBitmapFromFile
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipGetImagePaletteSize
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipCloneImage
GdipDisposeImage
GdiplusStartup
GdipFree
GdipBitmapUnlockBits
GdipAlloc
GdipCreateBitmapFromStream

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

advapi32

RegSetValueW
RegEnumKeyW
RegQueryValueW
RegEnumValueW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
FreeSid
GetTokenInformation
DuplicateToken
AllocateAndInitializeSid
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegQueryInfoKeyW
RegEnumKeyExW
RegSetValueExW
GetFileSecurityW
SetFileSecurityW

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

winmm

PlaySoundW

winspool.drv

OpenPrinterW
ClosePrinter
GetJobW
DocumentPropertiesW

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

oledlg

OleUIBusyW

msi

ord70
ord205
ord45
ord8
ord32
ord159
ord160
ord118
ord92

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 672KB - Virtual size: 672KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 302.1MB - Virtual size: 302.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 208KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e7f6c81eb7003e36e0829aca4aee8fb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

msimg32

comctl32

shlwapi

uxtheme

ole32

oleaut32

urlmon

gdiplus

imm32

advapi32

version

winmm

winspool.drv

oleacc

oledlg

msi

Sections

.text Size: 2.8MB - Virtual size: 2.8MB

.rdata Size: 672KB - Virtual size: 672KB

.data Size: 41KB - Virtual size: 69KB

.gfids Size: 139KB - Virtual size: 139KB

.giats Size: 512B - Virtual size: 28B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 302.1MB - Virtual size: 302.1MB

.reloc Size: 208KB - Virtual size: 208KB

.text
Size: 2.8MB - Virtual size: 2.8MB

.rdata
Size: 672KB - Virtual size: 672KB

.data
Size: 41KB - Virtual size: 69KB

.gfids
Size: 139KB - Virtual size: 139KB

.giats
Size: 512B - Virtual size: 28B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 302.1MB - Virtual size: 302.1MB

.reloc
Size: 208KB - Virtual size: 208KB