2023-08-25_42dc5bbd9cadc37d7c55f3237013cd83_magniber_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-25_42dc5bbd9cadc37d7c55f3237013cd83_magniber_JC.exe
Size

2.0MB
MD5

42dc5bbd9cadc37d7c55f3237013cd83
SHA1

69c4954bfbbbb1c6f9ea0435d8e24e503ffad474
SHA256

2d75220aec38cba7e75ff385520a0f9f1821bb257724af4fe4ff84ada9c0a8fb
SHA512

bc08da92a1c09d403ec3414ce56be2b0b087472523353256757b108a6ffee670e76a7c26217d16fdec06ef037d7439e11b07dc4edb3bb1e610db1e499296e0ee
SSDEEP

49152:GqFb0YDYWLnAKpoXo50a+PBuyYAfRmc/rKh23UTf3+afwKmXTb:BFb0YDbLAKpoXoCa+PBbf8SrKOaRM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-25_42dc5bbd9cadc37d7c55f3237013cd83_magniber_JC.exe

Files

2023-08-25_42dc5bbd9cadc37d7c55f3237013cd83_magniber_JC.exe
.exe windows:4 windows x86

bcc61b3687ada8a18c648d5e0729b6cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoA
RtlUnwind
ExitThread
CreateThread
ExitProcess
HeapSize
HeapDestroy
HeapCreate
VirtualFree
GetStdHandle
IsValidCodePage
GetStringTypeA
GetStringTypeW
Sleep
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetSystemTimeAsFileTime
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetConsoleCP
GetConsoleMode
GetLocaleInfoW
SetStdHandle
WriteConsoleA
TerminateProcess
WriteConsoleW
SetEnvironmentVariableA
CreateSemaphoreA
ReleaseMutex
CreateDirectoryA
RemoveDirectoryA
GetFileAttributesExA
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapReAlloc
HeapAlloc
SetErrorMode
FileTimeToLocalFileTime
GetPrivateProfileStringA
WritePrivateProfileStringA
lstrcatA
FileTimeToDosDateTime
OutputDebugStringA
GetFileInformationByHandle
GlobalMemoryStatus
GetTempPathA
WaitForMultipleObjects
ResetEvent
InterlockedCompareExchange
GetTickCount
GetOEMCP
GetCPInfo
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
WriteFile
DeleteFileA
MoveFileA
FileTimeToSystemTime
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
GetFileAttributesA
GlobalFlags
GetThreadLocale
RaiseException
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
CreateEventA
SuspendThread
SetEvent
ResumeThread
SetThreadPriority
GetModuleFileNameW
GetCurrentProcessId
FormatMessageA
LocalFree
MulDiv
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GetVersionExA
GetModuleFileNameA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
InterlockedDecrement
GetFileSize
HeapFree
GetProcessHeap
WaitForSingleObject
CreateProcessA
SetFilePointer
ReadFile
CreateFileA
FreeLibrary
GetWindowsDirectoryA
lstrcpyA
GetACP
GetUserDefaultLangID
CloseHandle
CreateMutexA
GetCommandLineA
GetProcAddress
GetModuleHandleA
LoadLibraryA
SetLastError
FindResourceA
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
CompareStringA
lstrlenA
MultiByteToWideChar
InterlockedExchange
GetVersion
GetLastError
CompareStringW
GetConsoleOutputCP
ReleaseSemaphore

user32

CallNextHookEx
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
GetKeyState
UpdateWindow
GetMenu
GetSubMenu
GetMenuItemID
GetMenuItemCount
MessageBoxA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
ScreenToClient
EqualRect
CopyRect
SetWindowsHookExA
PtInRect
DefWindowProcA
CallWindowProcA
OffsetRect
GetMenuState
GetWindowPlacement
AdjustWindowRectEx
GetDesktopWindow
GetClientRect
GrayStringA
CharUpperA
GetParent
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetNextDlgTabItem
EndDialog
GetWindowTextLengthA
GetWindowTextA
GetFocus
SetWindowPos
SetFocus
IsWindowEnabled
MoveWindow
SetWindowLongA
GetDlgCtrlID
CheckMenuItem
DrawTextExA
EnableMenuItem
ModifyMenuA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
IsWindow
SetWindowTextA
GetCapture
IsChild
WinHelpA
PostMessageA
SendMessageA
EnableWindow
GetDC
GetWindowRect
ReleaseDC
SetCursor
DestroyIcon
LoadBitmapA
RegisterWindowMessageA
SendMessageTimeoutA
EnumWindows
SetForegroundWindow
IsIconic
ShowWindow
DrawIcon
ClientToScreen
GetWindowDC
BeginPaint
TabbedTextOutA
DrawTextA
IntersectRect
GetSystemMenu
AppendMenuA
LoadMenuA
GetClassNameA
PostQuitMessage
SetMenu
SetTimer
KillTimer
IsWindowVisible
SystemParametersInfoA
DrawAnimatedRects
FindWindowA
EnumChildWindows
EndPaint
GetWindowThreadProcessId
ValidateRect
GetCursorPos
TranslateMessage
GetMessageA
MapDialogRect
SetWindowContextHelpId
CopyAcceleratorTableA
IsRectEmpty
SetRect
InvalidateRect
InvalidateRgn
SetCapture
ReleaseCapture
GetNextDlgGroupItem
MessageBeep
InflateRect
PostThreadMessageA
WindowFromPoint
RegisterClipboardFormatA
UnregisterClassA
LoadCursorA
GetSysColorBrush
CharNextA
DestroyMenu
GetSystemMetrics
wvsprintfA
wsprintfA
CopyIcon
RedrawWindow
LoadIconA
GetWindow
GetDlgItem
SendDlgItemMessageA
SetDlgItemTextA
IsDialogMessageA
GetWindowLongA

gdi32

DeleteObject
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
BitBlt
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreateCompatibleDC
GetStockObject
GetRgnBox
CreateFontIndirectA
GetTextExtentPoint32A
GetBkColor
GetTextColor
CreateCompatibleBitmap
GetMapMode
StretchDIBits
SetMapMode
SetStretchBltMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
CreateRectRgnIndirect
GetDeviceCaps
GetObjectA
SetBkColor
SetTextColor
GetClipBox

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

CryptGenRandom
CryptAcquireContextA
GetUserNameA
AdjustTokenPrivileges
OpenProcessToken
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
CryptReleaseContext

shell32

SHGetPathFromIDListA
SHGetMalloc
SHAppBarMessage
Shell_NotifyIconA
ShellExecuteA
SHBrowseForFolderA

comctl32

ord17

shlwapi

PathIsUNCA
PathStripToRootA
PathFindFileNameA
PathFindExtensionA

oledlg

ord8

ole32

CoTaskMemAlloc
CoInitializeSecurity
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
CoTaskMemFree
CoUninitialize
CoCreateInstance
CoInitialize
OleFlushClipboard
CoRegisterMessageFilter
CLSIDFromString
CLSIDFromProgID

oleaut32

SafeArrayGetElement
SafeArrayGetElemsize
SafeArrayAccessData
SafeArrayUnaccessData
OleCreateFontIndirect
LoadRegTypeLi
DispCallFunc
SystemTimeToVariantTime
VariantTimeToSystemTime
SysAllocStringByteLen
SysStringLen
VariantChangeType
SysAllocStringLen
VariantClear
VariantCopy
VariantInit
SafeArrayDestroy
SysAllocString
SafeArrayPutElement
SafeArrayCreate
SysFreeString

ws2_32

closesocket
accept
socket
select
gethostbyname
htonl
htons
WSACleanup
bind
WSAGetLastError
getsockname
getpeername
WSASetLastError
connect
sendto
recvfrom
WSAAsyncSelect
send
recv
inet_ntoa
WSAStartup
inet_addr
gethostname
WSAAsyncGetHostByName
WSACancelAsyncRequest
WSAEventSelect
shutdown
getsockopt
WSARecvFrom
WSASocketA
setsockopt
WSASendTo
ntohl
ioctlsocket
__WSAFDIsSet
ntohs
WSASend
getservbyname
WSARecv
WSAStringToAddressA
WSAAddressToStringA
listen

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 324KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 452KB - Virtual size: 449KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bcc61b3687ada8a18c648d5e0729b6cf

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 324KB - Virtual size: 320KB

.data Size: 56KB - Virtual size: 1.2MB

.tls Size: 4KB - Virtual size: 2B

.rsrc Size: 452KB - Virtual size: 449KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 324KB - Virtual size: 320KB

.data
Size: 56KB - Virtual size: 1.2MB

.tls
Size: 4KB - Virtual size: 2B

.rsrc
Size: 452KB - Virtual size: 449KB