2023-08-26_c1642e0d4062911b9defe29e3fe197a4_magniber_JC[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

2023-08-26_c1642e0d4062911b9defe29e3fe197a4_magniber_JC.exe
Size

2.2MB
MD5

c1642e0d4062911b9defe29e3fe197a4
SHA1

2d15a2cd08983f031ce6404ef6b5b5328118c8bd
SHA256

be6f1404bfda3c821419b964bd772931122414ed53816618487bf6d0500ba9f3
SHA512

9a2bfb58c56640e68ab9cd169fe7694a5839810123d5ca84ff78039dcc50a59f543490af8af50fbce351f9e010280971d22f4d9b42086c02f6e90d5f00e40a68
SSDEEP

49152:BfGqKlcDQmjqua8gcK1hJfyTQLrZub+kD3A:Bp4uV5TglnHwD3A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-26_c1642e0d4062911b9defe29e3fe197a4_magniber_JC.exe

Files

2023-08-26_c1642e0d4062911b9defe29e3fe197a4_magniber_JC.exe
.exe windows:5 windows x86

643f242d62fda845146eb69bee34d291

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
IsBadReadPtr
HeapCreate
HeapAlloc
HeapFree
HeapDestroy
FlushInstructionCache
GetFullPathNameW
FreeResource
FindResourceW
lstrlenW
LocalFree
SetEnvironmentVariableA
CompareStringW
GetProcessHeap
SetEndOfFile
WriteConsoleW
SetConsoleCtrlHandler
LeaveCriticalSection
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetStringTypeW
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetTimeZoneInformation
GetFileAttributesW
HeapSize
IsValidCodePage
GetOEMCP
GetACP
GetLocalTime
FatalAppExitA
ExitProcess
GetStdHandle
SetHandleCount
GetCurrentThread
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetConsoleMode
GetConsoleCP
GetFileType
InitializeCriticalSectionAndSpinCount
SetStdHandle
IsProcessorFeaturePresent
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
LCMapStringW
RaiseException
RtlUnwind
HeapReAlloc
GetStartupInfoW
HeapSetInformation
GetSystemTimeAsFileTime
GetDateFormatA
GetTimeFormatA
MoveFileA
InterlockedCompareExchange
InterlockedExchange
DecodePointer
EncodePointer
GetVersionExA
GetModuleHandleA
FlushFileBuffers
InitializeCriticalSection
DeleteFileA
CreateToolhelp32Snapshot
Process32NextW
GetModuleFileNameA
GetSystemInfo
Process32FirstW
GetProcAddress
CreateDirectoryA
TerminateProcess
GetFileAttributesA
GetVersionExW
LoadLibraryW
OpenProcess
GetModuleHandleW
GetCurrentProcess
MultiByteToWideChar
WideCharToMultiByte
EndUpdateResourceA
EnumResourceNamesA
CopyFileW
CreateEventW
ResetEvent
SetEvent
SetCurrentDirectoryW
GetCommandLineW
GlobalUnlock
GlobalLock
GlobalAlloc
FindClose
FindNextFileW
FindFirstFileW
GetFileAttributesExW
OutputDebugStringW
GetTickCount
TerminateThread
GetModuleFileNameW
OutputDebugStringA
InterlockedIncrement
InterlockedDecrement
DeleteCriticalSection
GetLocaleInfoW
EnterCriticalSection
UpdateResourceW
BeginUpdateResourceA
LockResource
LoadLibraryA
BeginUpdateResourceW
SetLastError
EnumResourceLanguagesA
SizeofResource
EnumResourceTypesA
GetCommandLineA
EndUpdateResourceW
UpdateResourceA
LoadResource
FreeLibrary
FindResourceA
ReleaseMutex
WaitForSingleObject
CreateMutexW
CreateThread
DeleteFileW
CloseHandle
GetLastError
CreateFileW
ReadFile
WriteFile
SetFilePointer
GetFileSize
CreateFileA
Sleep
IsValidLocale
lstrlenA

user32

IsRectEmpty
PtInRect
SetCursor
IntersectRect
SendMessageW
GetActiveWindow
ShowWindow
OffsetRect
GetWindowLongW
SetWindowLongW
GetSystemMetrics
PostMessageW
FindWindowW
GetSysColor
DestroyWindow
GetCursorPos
SetWindowPos
GetParent
GetDlgItem
GetForegroundWindow
MsgWaitForMultipleObjects
UpdateLayeredWindow
GetDesktopWindow
EnableWindow
SetActiveWindow
MapVirtualKeyA
CharLowerBuffW
GetMessageW
PeekMessageW
TranslateMessage
DispatchMessageW
DrawTextW
IsWindowVisible
SystemParametersInfoA
GetWindowPlacement
EnableMenuItem
ClientToScreen
GetFocus
GetWindow
GetWindowTextW
SetClipboardData
RegisterClipboardFormatW
OpenClipboard
EmptyClipboard
CloseClipboard
IsIconic
IsWindow
CopyRect
SetRect
EqualRect
InflateRect
InvertRect
FillRect
DrawIconEx
UnionRect
SetTimer
KillTimer
DestroyIcon
GetIconInfo
CharNextW
DestroyCursor
LoadCursorW
GetKeyState
LoadBitmapW
LoadImageW
CreateIconFromResource
MessageBoxW
LoadIconW
UpdateWindow
InvalidateRect
GetWindowRect
GetClientRect
ScreenToClient
CreatePopupMenu
SetMenuContextHelpId
InsertMenuW
GetDC
ReleaseDC
SetCapture
DeleteMenu
IsMenu
DestroyMenu
IsWindowEnabled
SetForegroundWindow
TrackPopupMenu
AppendMenuW
SetMenuInfo
GetMenuInfo
CheckMenuItem
GetMenuItemCount
GetMenuItemInfoW
RegisterClassExW
CreateWindowExW
MapWindowPoints
UnregisterClassW
CallWindowProcW
DefWindowProcW
SetLayeredWindowAttributes
BeginPaint
EndPaint
PostQuitMessage
GetClassNameW
TrackMouseEvent
AnimateWindow
IsZoomed
MonitorFromWindow
GetMonitorInfoW
SetCaretPos
GetCaretBlinkTime
CreateCaret
HideCaret
GetCapture
ReleaseCapture
SetWindowTextW
SetFocus

gdi32

SetViewportOrgEx
StretchBlt
EnumFontsW
CreateSolidBrush
Rectangle
SetBkMode
GetStockObject
GetObjectW
CreateFontIndirectW
GetClipBox
GetDCOrgEx
CreateRoundRectRgn
GetDeviceCaps
SetGraphicsMode
CreateBitmap
CreateCompatibleDC
SelectObject
DeleteDC
BitBlt
DeleteObject
CreateRectRgnIndirect
CreateCompatibleBitmap
CreateDIBSection
CombineRgn
PtInRegion
RectInRegion
GetRgnBox
OffsetRgn
SetRectRgn
CreateEllipticRgnIndirect
SetTextColor
GetTextColor
ExtSelectClipRgn
SaveDC
RestoreDC
ExcludeClipRect
GetCurrentObject
GetViewportOrgEx
GetClipRgn
CreatePatternBrush
ExtCreatePen
CreatePen
Pie
Arc
Polyline
SetROP2
GetWorldTransform
SetWorldTransform
Ellipse
RoundRect
GetTextExtentPoint32W
CreateRectRgn
IntersectClipRect

comdlg32

GetSaveFileNameW
GetOpenFileNameW

advapi32

RegEnumValueA
OpenProcessToken
RegQueryValueExA
RegOpenKeyW
LookupPrivilegeValueW
RegSaveKeyW
RegRestoreKeyW
RegSetValueExW
RegEnumKeyExW
RegOpenKeyExW
RegDeleteValueW
RegDeleteKeyW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExA
RegCloseKey
AdjustTokenPrivileges
CheckTokenMembership
FreeSid
AllocateAndInitializeSid
RegOpenKeyExA

shell32

DragQueryFileW
ShellExecuteExW
ShellExecuteW
ShellExecuteA
SHGetSpecialFolderPathA
SHChangeNotify
SHGetSpecialFolderLocation
SHGetPathFromIDListW
DragAcceptFiles
Shell_NotifyIconW

ole32

CreateBindCtx
OleLockRunning
CLSIDFromProgID
CoInitialize
CoCreateInstance
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CLSIDFromString

oleaut32

CreateErrorInfo
SetErrorInfo
VariantInit
VariantClear
VariantChangeType
GetErrorInfo
SysFreeString
SysAllocString

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

imagehlp

MakeSureDirectoryPathExists

ws2_32

select
WSAStartup
connect
__WSAFDIsSet
getsockopt
recv
socket
closesocket
gethostbyname
inet_ntoa
send
htons

netapi32

Netbios

shlwapi

PathFindFileNameW
PathRemoveFileSpecW
StrToIntExW
PathFindExtensionW
PathFileExistsW
PathFileExistsA

freeimage

_FreeImage_GetFormatFromFIF@4
_FreeImage_GetInfo@4
_FreeImage_ConvertTo32Bits@4
_FreeImage_GetBits@4
_FreeImage_Unload@4
_FreeImage_GetFileType@8
_FreeImage_GetFIFFromFilename@4
_FreeImage_Load@12
_FreeImage_OpenMultiBitmap@24
_FreeImage_GetPageCount@4
_FreeImage_LockPage@8
_FreeImage_CloseMultiBitmap@8
_FreeImage_GetMetadata@16
_FreeImage_UnlockPage@12
_FreeImage_GetBPP@4
_FreeImage_FIFSupportsWriting@4
_FreeImage_FIFSupportsExportBPP@8
_FreeImage_Save@16
_FreeImage_GetTagType@4
_FreeImage_GetTagValue@4
_FreeImage_GetThumbnail@4
_FreeImage_GetImageType@4
_FreeImage_Rescale@16
_FreeImage_FIFSupportsReading@4

gdiplus

GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipGetImageThumbnail
GdipSaveImageToFile
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipImageGetFrameCount
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipImageRotateFlip
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDisposeImage
GdipAlloc
GdipFree
GdipImageSelectActiveFrame
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdiplusStartup
GdiplusShutdown
GdipGraphicsClear
GdipDrawImageRectI
GdipDrawImageI

imm32

ImmGetContext
ImmAssociateContext
ImmReleaseContext

msimg32

AlphaBlend
GradientFill

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 335KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 32KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 159KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

643f242d62fda845146eb69bee34d291

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

version

imagehlp

ws2_32

netapi32

shlwapi

freeimage

gdiplus

imm32

msimg32

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 335KB - Virtual size: 335KB

.data Size: 32KB - Virtual size: 106KB

.rsrc Size: 315KB - Virtual size: 315KB

.reloc Size: 159KB - Virtual size: 160KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 335KB - Virtual size: 335KB

.data
Size: 32KB - Virtual size: 106KB

.rsrc
Size: 315KB - Virtual size: 315KB

.reloc
Size: 159KB - Virtual size: 160KB