2024-01-01_b368c3c488cfc5cfa9233f2f0238ce20_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-01_b368c3c488cfc5cfa9233f2f0238ce20_magniber
Size

1023KB
MD5

b368c3c488cfc5cfa9233f2f0238ce20
SHA1

db5db7b03d188c20a7077a09317872c8570763f3
SHA256

1b296fa09197fabe84ea7904952ed524d95014eb525b06bbb1e47692b04610db
SHA512

4510a44dd713da17259f745190782361aaa9b3d5a96d50e338f188808d6499c3210a3e712e052ac661172f70aa717868b682c9e85e295ae65f4d91925dc27362
SSDEEP

24576:XEYYYYks0lCxAymb2+EGN2BAaIeYpgWK3ZreRW:XEYYYYks0ZbV2BKpNK3ZreM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-01_b368c3c488cfc5cfa9233f2f0238ce20_magniber

Files

2024-01-01_b368c3c488cfc5cfa9233f2f0238ce20_magniber
.exe windows:6 windows x86 arch:x86

c1373dc39e6053e38570e95beb087bf4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

GetSystemDirectoryW
GetModuleHandleA
lstrcatW
GetProcAddress
LoadLibraryExW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReleaseSemaphore
InitializeCriticalSection
WaitForSingleObject
GetLastError
SetEvent
CloseHandle
ResetEvent
CreateSemaphoreA
CreateEventA
WideCharToMultiByte
MultiByteToWideChar
AreFileApisANSI
FreeLibrary
LoadLibraryExA
LoadLibraryA
LoadLibraryW
GetModuleFileNameA
GetModuleFileNameW
FormatMessageA
FormatMessageW
LocalFree
GetWindowsDirectoryA
GetWindowsDirectoryW
GetSystemDirectoryA
SetLastError
CreateFileW
SetFileTime
SetFileAttributesA
SetFileAttributesW
RemoveDirectoryA
RemoveDirectoryW
MoveFileA
MoveFileW
GetModuleHandleW
CreateDirectoryA
CreateDirectoryW
DeleteFileA
DeleteFileW
SetCurrentDirectoryA
SetCurrentDirectoryW
GetCurrentDirectoryA
GetCurrentDirectoryW
GetTempPathA
GetTempPathW
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
FindClose
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
GetFileAttributesA
GetFileAttributesW
GetVersionExA
FindFirstChangeNotificationA
FindFirstChangeNotificationW
GetLogicalDriveStringsA
GetLogicalDriveStringsW
CreateFileA
GetFileSize
SetFilePointer
ReadFile
WriteFile
SetEndOfFile
CompareFileTime
GetProcessAffinityMask
GetCurrentProcess
GetSystemInfo
GlobalMemoryStatus
GetFileInformationByHandle
GetStdHandle
WaitForMultipleObjects
Sleep
GetCommandLineW
CreateProcessA
GetExitCodeProcess
CompareStringOrdinal
WriteConsoleW
ReadConsoleW
SetFilePointerEx
GetFileSizeEx
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
HeapSize
SetConsoleCtrlHandler
GetProcessHeap
GetStringTypeW
DecodePointer
GetFileType
SetStdHandle
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
OutputDebugStringW
HeapReAlloc
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetCurrentThread
HeapAlloc
HeapFree
ExitProcess
GetModuleHandleExW
FreeLibraryAndExitThread
ResumeThread
VirtualAlloc
VirtualFree
lstrlenW
FindCloseChangeNotification
ExitThread
CreateThread
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
EncodePointer
InterlockedFlushSList
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
RtlUnwind
RaiseException
InterlockedPushEntrySList

user32

ExitWindowsEx
DestroyWindow
LoadIconA
EndDialog
KillTimer
SetTimer
PostMessageA
SendMessageA
MessageBoxW
CharPrevExA
GetWindowTextW
GetWindowTextLengthW
SetWindowTextW
CreateWindowExW
RegisterClassW
GetWindowTextA
GetWindowTextLengthA
SetWindowTextA
CreateWindowExA
RegisterClassA
LoadStringW
LoadStringA
DialogBoxParamW
CreateDialogParamW
DialogBoxParamA
CreateDialogParamA
GetDialogBaseUnits
MapDialogRect
GetDlgItem
GetWindowLongA
SetWindowLongA
ShowWindow
MoveWindow
ScreenToClient
GetWindowRect
CharUpperA
CharUpperW
SystemParametersInfoA

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken

shell32

ShellExecuteExA
CommandLineToArgvW

oleaut32

VariantCopy
VariantClear
SysAllocString
SysAllocStringLen
SysStringLen

Sections

.text
Size: 521KB - Virtual size: 521KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1373dc39e6053e38570e95beb087bf4

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

user32

advapi32

shell32

oleaut32

Sections

.text Size: 521KB - Virtual size: 521KB

.rdata Size: 70KB - Virtual size: 70KB

.data Size: 5KB - Virtual size: 18KB

.rsrc Size: 80KB - Virtual size: 79KB

.reloc Size: 20KB - Virtual size: 19KB

.text
Size: 521KB - Virtual size: 521KB

.rdata
Size: 70KB - Virtual size: 70KB

.data
Size: 5KB - Virtual size: 18KB

.rsrc
Size: 80KB - Virtual size: 79KB

.reloc
Size: 20KB - Virtual size: 19KB