2023-08-25_3cc64091d4940519ae60cc0422d457bc_magniber_JC[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

2023-08-25_3cc64091d4940519ae60cc0422d457bc_magniber_JC.exe
Size

8.3MB
MD5

3cc64091d4940519ae60cc0422d457bc
SHA1

35dbacbb72d004e436831f417f1ccd6916886d96
SHA256

8c81c703db1fa573c436ca234f9de753d0a4f7d42e5cea56e1ff09f6366c8618
SHA512

35626e547bf2cc514714b75dae69c6b5a8cdd24ca19386204f77f93afb8af4dc56ef2618be03ca08c41792f0f3fc6fd00aa16d0745877d34d5e01c5027ae0baa
SSDEEP

196608:GAZrmgmXRgWJ30DeQleUpZNReNoe5B2I53OSYhZFMn3Dcm3TCr3:GwoXRr3HjUzDeNtfTFeFMn3Ymer3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-25_3cc64091d4940519ae60cc0422d457bc_magniber_JC.exe

Files

2023-08-25_3cc64091d4940519ae60cc0422d457bc_magniber_JC.exe
.exe windows:5 windows x86

65d15a03d907fd04bc8a219a28a213e1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
InterlockedExchange
CompareStringA
GetLocaleInfoW
lstrcmpA
EnumResourceLanguagesW
ConvertDefaultLocale
GlobalFree
InterlockedDecrement
GetModuleHandleA
MulDiv
GlobalReAlloc
GlobalHandle
LocalReAlloc
GlobalFlags
InterlockedIncrement
GetCurrentProcessId
GetThreadLocale
WritePrivateProfileStringW
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetFullPathNameW
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileAttributesW
GetFileSizeEx
GetFileTime
GetStartupInfoW
RtlUnwind
ExitProcess
HeapAlloc
HeapReAlloc
GlobalAddAtomW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
ExitThread
CreateThread
GetTimeZoneInformation
HeapSize
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
SetStdHandle
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
SetEnvironmentVariableA
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
SetLastError
lstrcmpW
GetVersionExA
IsProcessorFeaturePresent
FormatMessageW
WideCharToMultiByte
lstrlenA
MultiByteToWideChar
GetModuleFileNameA
CreateToolhelp32Snapshot
Process32FirstW
OpenProcess
Process32NextW
TerminateProcess
BeginUpdateResourceW
UpdateResourceW
EndUpdateResourceW
GetSystemDirectoryA
GetShortPathNameA
CreateFileA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetLocalTime
MoveFileA
RemoveDirectoryA
DeleteFileA
SetCurrentDirectoryA
CreateDirectoryA
FindNextFileA
FindFirstFileA
CopyFileA
GetCurrentThreadId
ReleaseMutex
GetModuleHandleW
CreateProcessW
CreateMutexW
SetErrorMode
FindNextChangeNotification
FindCloseChangeNotification
FindFirstChangeNotificationW
FindResourceW
LoadResource
LockResource
SizeofResource
FreeResource
LocalAlloc
LocalFree
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
QueryPerformanceFrequency
QueryPerformanceCounter
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
GetDateFormatW
GetTimeFormatW
ReleaseSemaphore
CreateSemaphoreW
GetLogicalDriveStringsW
GetLogicalDriveStringsA
DebugBreak
GlobalAlloc
GlobalLock
GlobalUnlock
GetVersionExW
GetTempPathW
GetDiskFreeSpaceExW
GetVolumeInformationW
GetLogicalDrives
GetDriveTypeA
GetModuleFileNameW
GetCurrentDirectoryA
SetCurrentDirectoryW
GetCurrentDirectoryW
FindNextFileW
CreateDirectoryW
FindFirstFileW
FindClose
ReadFile
GetLastError
GetFileSize
SetFilePointer
CopyFileW
GetSystemTimeAsFileTime
CreateFileW
SetFileTime
MoveFileW
DeleteFileW
RemoveDirectoryW
LoadLibraryA
FreeLibrary
LoadLibraryW
GetProcAddress
GetNumberOfConsoleInputEvents
ReadConsoleInputW
WriteFile
FlushFileBuffers
OutputDebugStringA
AllocConsole
SetConsoleTitleW
GetStdHandle
WaitForMultipleObjects
CreateWaitableTimerW
SetWaitableTimer
SetEvent
WaitForSingleObject
CloseHandle
CreateEventW
GetCurrentProcess
GetProcessAffinityMask
GetCurrentThread
SetThreadAffinityMask
HeapFree
Sleep

user32

UnregisterClassW
RegisterClipboardFormatW
PostThreadMessageW
LoadCursorW
GetSysColorBrush
GetWindowThreadProcessId
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
ReleaseDC
GetDC
SetWindowContextHelpId
MapDialogRect
GetDesktopWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
SetCursor
GetActiveWindow
ValidateRect
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
GetMenuState
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
MessageBeep
GetClassLongW
GetClassNameW
RemovePropW
GetFocus
IsWindow
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
GetKeyState
SetForegroundWindow
IsWindowVisible
GetSubMenu
GetMenuItemID
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
EqualRect
CopyRect
PtInRect
GetDlgCtrlID
GetMenu
GetWindowLongW
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetWindow
PeekMessageW
GetMessageW
TranslateMessage
DispatchMessageW
GetAsyncKeyState
WaitMessage
PostMessageW
GetClientRect
IsIconic
DrawIcon
GetSystemMenu
AppendMenuW
LoadIconW
FindWindowW
MessageBoxA
GetPropW
GetNextDlgGroupItem
InvalidateRgn
InvalidateRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
CharUpperW
EndDialog
CallWindowProcW
ReleaseCapture
SetCapture
CallNextHookEx
CharNextW
DefWindowProcW
GetParent
SendMessageW
SetWindowLongW
SetPropW
GetDlgItem
FindWindowExW
EnableWindow
GetCursorPos
ClientToScreen
TrackPopupMenu
GetMenuItemCount
CheckMenuRadioItem
EnableMenuItem
GetMenuItemInfoA
RemoveMenu
SetMenuItemInfoA
InsertMenuItemA
CreatePopupMenu
SetMenuInfo
DestroyMenu
CreateMenu
SetMenu
DrawMenuBar
GetSystemMetrics
ShowCursor
MessageBoxW
WaitForInputIdle
PostQuitMessage
EmptyClipboard
SetClipboardData
IsClipboardFormatAvailable
OpenClipboard
GetClipboardData
CloseClipboard
ToAscii
MapVirtualKeyW
EnumDisplayDevicesA
UpdateWindow

gdi32

GetBkColor
GetTextColor
GetRgnBox
GetMapMode
PtVisible
GetWindowExtEx
GetViewportExtEx
GetDeviceCaps
GetStockObject
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
TextOutW
DeleteObject
SetMapMode
RestoreDC
SaveDC
ExtTextOutW
CreateRectRgnIndirect
CreateBitmap
GetObjectW
SetBkColor
SetTextColor
GetClipBox
RectVisible

comdlg32

GetOpenFileNameW
GetSaveFileNameW
GetFileTitleW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

OpenThreadToken
RegCreateKeyExW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyW
RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
FreeSid
OpenProcessToken
DuplicateToken
AllocateAndInitializeSid
InitializeSecurityDescriptor
GetLengthSid
InitializeAcl
AddAccessAllowedAce
SetSecurityDescriptorDacl
SetSecurityDescriptorGroup
SetSecurityDescriptorOwner
IsValidSecurityDescriptor
AccessCheck

shell32

ShellExecuteW
SHGetSpecialFolderPathW
ShellExecuteExW

comctl32

ord17

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW

oledlg

OleUIBusyW

ole32

CoUninitialize
CoInitialize
CoSetProxyBlanket
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoTaskMemFree
CoTaskMemAlloc
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

VariantCopy
SysAllocString
SafeArrayDestroy
SystemTimeToVariantTime
VariantTimeToSystemTime
OleCreateFontIndirect
SysStringLen
SysFreeString
VariantInit
VariantChangeType
SysAllocStringLen
VariantClear

winmm

auxGetNumDevs
timeGetTime
mciGetErrorStringA
mciSendCommandW
auxGetVolume
mixerGetControlDetailsW
auxSetVolume
mixerSetControlDetails
auxGetDevCapsW
mixerClose
mixerGetLineControlsW
mixerGetLineInfoW
mixerOpen
mixerGetNumDevs

ws2_32

connect
closesocket
inet_addr
WSAStartup
select
htons
WSAGetLastError
socket
sendto
getsockopt
recvfrom
inet_ntoa
listen
accept
bind
setsockopt
ioctlsocket
send
recv
gethostbyname
htonl
ntohs
WSACleanup

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 297KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 9.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6.7MB - Virtual size: 6.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65d15a03d907fd04bc8a219a28a213e1

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

winmm

ws2_32

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 297KB - Virtual size: 297KB

.data Size: 35KB - Virtual size: 9.9MB

.rsrc Size: 6.7MB - Virtual size: 6.7MB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 297KB - Virtual size: 297KB

.data
Size: 35KB - Virtual size: 9.9MB

.rsrc
Size: 6.7MB - Virtual size: 6.7MB