2024-01-01_24130629070fe5d6234ab2612d2f09a6_magniber

Sharing

Copy URL

Twitter E-mail

General

Target

2024-01-01_24130629070fe5d6234ab2612d2f09a6_magniber
Size

1.2MB
MD5

24130629070fe5d6234ab2612d2f09a6
SHA1

37fa0ca456fe644d42db32675b2b2404c1247d9b
SHA256

423713daebb5c382eb9cbe78aa44e3f435c9639696181f7adde7eb5551908071
SHA512

4b74e1e7918d7db3da694511269710f207f3b97fe4edf56f8e2f0c68c540df3bcfe0508dde8ca10595e7429a216a791405cc5813667804916e600b19cdf255ce
SSDEEP

24576:fUYYYYk8Jatbfix4qBmq2B1ryIDfvstcILJCkr8jQ:fUYYYYk8JFx52B1fvIcILWQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-01_24130629070fe5d6234ab2612d2f09a6_magniber

Files

2024-01-01_24130629070fe5d6234ab2612d2f09a6_magniber
.exe windows:6 windows x86 arch:x86

c1373dc39e6053e38570e95beb087bf4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

GetSystemDirectoryW
GetModuleHandleA
lstrcatW
GetProcAddress
LoadLibraryExW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReleaseSemaphore
InitializeCriticalSection
WaitForSingleObject
GetLastError
SetEvent
CloseHandle
ResetEvent
CreateSemaphoreA
CreateEventA
WideCharToMultiByte
MultiByteToWideChar
AreFileApisANSI
FreeLibrary
LoadLibraryExA
LoadLibraryA
LoadLibraryW
GetModuleFileNameA
GetModuleFileNameW
FormatMessageA
FormatMessageW
LocalFree
GetWindowsDirectoryA
GetWindowsDirectoryW
GetSystemDirectoryA
SetLastError
CreateFileW
SetFileTime
SetFileAttributesA
SetFileAttributesW
RemoveDirectoryA
RemoveDirectoryW
MoveFileA
MoveFileW
GetModuleHandleW
CreateDirectoryA
CreateDirectoryW
DeleteFileA
DeleteFileW
SetCurrentDirectoryA
SetCurrentDirectoryW
GetCurrentDirectoryA
GetCurrentDirectoryW
GetTempPathA
GetTempPathW
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
FindClose
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
GetFileAttributesA
GetFileAttributesW
GetVersionExA
FindFirstChangeNotificationA
FindFirstChangeNotificationW
GetLogicalDriveStringsA
GetLogicalDriveStringsW
CreateFileA
GetFileSize
SetFilePointer
ReadFile
WriteFile
SetEndOfFile
CompareFileTime
GetProcessAffinityMask
GetCurrentProcess
GetSystemInfo
GlobalMemoryStatus
GetFileInformationByHandle
GetStdHandle
WaitForMultipleObjects
Sleep
GetCommandLineW
CreateProcessA
GetExitCodeProcess
CompareStringOrdinal
WriteConsoleW
ReadConsoleW
SetFilePointerEx
GetFileSizeEx
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
HeapSize
SetConsoleCtrlHandler
GetProcessHeap
GetStringTypeW
DecodePointer
GetFileType
SetStdHandle
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
OutputDebugStringW
HeapReAlloc
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetCurrentThread
HeapAlloc
HeapFree
ExitProcess
GetModuleHandleExW
FreeLibraryAndExitThread
ResumeThread
VirtualAlloc
VirtualFree
lstrlenW
FindCloseChangeNotification
ExitThread
CreateThread
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
EncodePointer
InterlockedFlushSList
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
RtlUnwind
RaiseException
InterlockedPushEntrySList

user32

ExitWindowsEx
DestroyWindow
LoadIconA
EndDialog
KillTimer
SetTimer
PostMessageA
SendMessageA
MessageBoxW
CharPrevExA
GetWindowTextW
GetWindowTextLengthW
SetWindowTextW
CreateWindowExW
RegisterClassW
GetWindowTextA
GetWindowTextLengthA
SetWindowTextA
CreateWindowExA
RegisterClassA
LoadStringW
LoadStringA
DialogBoxParamW
CreateDialogParamW
DialogBoxParamA
CreateDialogParamA
GetDialogBaseUnits
MapDialogRect
GetDlgItem
GetWindowLongA
SetWindowLongA
ShowWindow
MoveWindow
ScreenToClient
GetWindowRect
CharUpperA
CharUpperW
SystemParametersInfoA

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken

shell32

ShellExecuteExA
CommandLineToArgvW

oleaut32

VariantCopy
VariantClear
SysAllocString
SysAllocStringLen
SysStringLen

Sections

.text
Size: 522KB - Virtual size: 521KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1373dc39e6053e38570e95beb087bf4

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

user32

advapi32

shell32

oleaut32

Sections

.text Size: 522KB - Virtual size: 521KB

.rdata Size: 70KB - Virtual size: 70KB

.data Size: 5KB - Virtual size: 18KB

.rsrc Size: 80KB - Virtual size: 79KB

.reloc Size: 20KB - Virtual size: 19KB

.text
Size: 522KB - Virtual size: 521KB

.rdata
Size: 70KB - Virtual size: 70KB

.data
Size: 5KB - Virtual size: 18KB

.rsrc
Size: 80KB - Virtual size: 79KB

.reloc
Size: 20KB - Virtual size: 19KB