4c0083a5f1379c7128a7e1e65f4091f401a7e44da0e584d418cb62b476da71dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-23_2428a2403f5053d4b23a9f10d4929d86_magniber_revil_JC.exe
Size

5.2MB
Sample

230903-v5fqrsbf36
MD5

2428a2403f5053d4b23a9f10d4929d86
SHA1

14775c283c10ace9b898d57beb403224a0266dbf
SHA256

4c0083a5f1379c7128a7e1e65f4091f401a7e44da0e584d418cb62b476da71dd
SHA512

87f2e6008240e52649a80b4cd732b87959f59e3c0c4262c5e1a79fe747570af81948c18c187064ae8de668c0c343ddd7ae0f1dd25b37186ddfa2bc28a45747fa
SSDEEP

98304:tq9RjTjO8N0m8txzJ7YGuitvtmTd6zlf17YpiyTilv7e2uWorUaQY9zm:tq9RrOnPYGuiVttlf17YcZBhY9zm

Score

9^/10

evasion

Malware Config

Targets

- Target
  
  2023-08-23_2428a2403f5053d4b23a9f10d4929d86_magniber_revil_JC.exe
- Size
  
  5.2MB
- MD5
  
  2428a2403f5053d4b23a9f10d4929d86
- SHA1
  
  14775c283c10ace9b898d57beb403224a0266dbf
- SHA256
  
  4c0083a5f1379c7128a7e1e65f4091f401a7e44da0e584d418cb62b476da71dd
- SHA512
  
  87f2e6008240e52649a80b4cd732b87959f59e3c0c4262c5e1a79fe747570af81948c18c187064ae8de668c0c343ddd7ae0f1dd25b37186ddfa2bc28a45747fa
- SSDEEP
  
  98304:tq9RjTjO8N0m8txzJ7YGuitvtmTd6zlf17YpiyTilv7e2uWorUaQY9zm:tq9RrOnPYGuiVttlf17YcZBhY9zm
Score

9^/10

evasion
- Looks for VirtualBox Guest Additions in registry
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2