2024-01-08_681c63d9a53c1cbc44829154e232777a_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-08_681c63d9a53c1cbc44829154e232777a_magniber
Size

2.8MB
MD5

681c63d9a53c1cbc44829154e232777a
SHA1

e2e5075ba7027481133fcc9b25e7e6aeb62a7045
SHA256

e0b22bdd01a9fd48754293c91f0da1b4739fba74fa38be0f19a8d97d5b091078
SHA512

fe8c2b10e8b442613bc7913d9a9d31e85fd84efe9077ccfcafd4feae0b2eb29c8002d4cb296f6ca7d6692689f62135ffb0287d90376145025380c39d0977f11f
SSDEEP

49152:fw2/7xSV8yyYHfT8RpAd5hKBSIH27xbOnvKGxqXyS0wOQbwF46U8Vrf3Aavp:XSqyjHgpiK+xbMKGoyS0Zf35

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-08_681c63d9a53c1cbc44829154e232777a_magniber

Files

2024-01-08_681c63d9a53c1cbc44829154e232777a_magniber
.exe windows:5 windows x86 arch:x86

78f90425680ee26368c6d6bdd75562db

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
GlobalLock
GlobalAlloc
GlobalFree
WaitForSingleObject
FindClose
GetCommandLineA
GetLastError
CreateMutexA
GetCurrentThreadId
InterlockedDecrement
SetUnhandledExceptionFilter
GetCurrentProcess
VirtualQuery
QueryPerformanceCounter
QueryPerformanceFrequency
GetThreadPriority
InitializeCriticalSection
DeleteCriticalSection
VirtualProtect
IsBadWritePtr
SetErrorMode
GetFileSize
InterlockedIncrement
lstrlenW
lstrlenA
GetProcessHeap
SetEndOfFile
CreateFileW
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
GetCurrentDirectoryA
InitializeCriticalSectionAndSpinCount
SetConsoleCtrlHandler
FlushFileBuffers
MultiByteToWideChar
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapDestroy
HeapCreate
VirtualAlloc
VirtualFree
FatalAppExitA
HeapSize
GetFileType
GetStdHandle
SetHandleCount
GetConsoleMode
GetConsoleCP
WriteFile
SetFilePointer
ReadFile
IsValidCodePage
GetOEMCP
GetACP
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetCPInfo
LCMapStringW
LCMapStringA
GetFullPathNameA
GetDriveTypeA
ExitProcess
GetModuleHandleW
GetLocalTime
ResumeThread
ExitThread
GetSystemTimeAsFileTime
GetStartupInfoA
HeapReAlloc
HeapFree
HeapAlloc
RtlUnwind
RaiseException
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
InterlockedExchange
InterlockedCompareExchange
WideCharToMultiByte
GetCurrentThread
SetThreadPriority
OutputDebugStringA
GetVersionExA
GetSystemDirectoryA
CreateFileA
GetFileTime
FileTimeToSystemTime
CloseHandle
GetTickCount
GetModuleHandleA
GetProcAddress
MulDiv
LeaveCriticalSection
EnterCriticalSection
LoadLibraryA
FreeLibrary
GetCurrentProcessId
CreateFileMappingA
MapViewOfFile
CreateDirectoryA
FindFirstFileA
DeleteFileA
FindNextFileA
WinExec
GetModuleFileNameA
SetCurrentDirectoryA
Sleep
GetEnvironmentVariableA
GetTimeZoneInformation
CreateThread
ReleaseMutex
RemoveDirectoryA

user32

GetClipboardData
SetCursor
LoadCursorA
GetCursorPos
ClientToScreen
GetCursor
SystemParametersInfoA
SetCursorPos
GetSystemMetrics
GetWindowRect
GetClientRect
ReleaseDC
GetDC
DrawTextExA
FillRect
OffsetRect
MoveWindow
AdjustWindowRectEx
GetWindowInfo
ShowWindow
EnumChildWindows
DestroyWindow
GetClassNameA
GetMessageA
CreateWindowExW
GetSysColorBrush
HideCaret
DestroyCaret
CreateCaret
ShowCaret
SetCaretPos
DestroyCursor
AdjustWindowRect
GetActiveWindow
SetTimer
RegisterWindowMessageA
LoadIconA
RegisterClassA
CreateWindowExA
SetWindowLongA
CreateCursor
EnumDisplaySettingsA
EnumWindows
ChangeDisplaySettingsA
IsIconic
PostMessageA
GetWindowLongA
BeginPaint
EndPaint
DefWindowProcA
DefWindowProcW
IsWindowVisible
GetWindowTextA
SetWindowTextA
SetFocus
PeekMessageA
DispatchMessageA
TranslateMessage
WindowFromPoint
SetCapture
DialogBoxIndirectParamA
GetDlgItem
SendMessageA
EndDialog
MessageBoxW
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
MessageBoxA
ScreenToClient
ReleaseCapture
GetWindowPlacement
SetForegroundWindow

gdi32

CreateRectRgn
SelectClipRgn
GetTextExtentPoint32A
Rectangle
GdiFlush
SetBkMode
IntersectClipRect
SetTextColor
TextOutA
CreateDIBSection
GetStockObject
CreateFontA
GetTextMetricsA
DeleteObject
CreateFontIndirectA
GetObjectA
CreateCompatibleDC
SelectObject
BitBlt
StretchBlt
DeleteDC
GetDeviceCaps

advapi32

RegSetValueExA
RegOpenKeyExA
RegDeleteValueA
RegOpenKeyA
RegQueryValueExA
RegCloseKey

shell32

SHGetSpecialFolderPathA
ShellExecuteA

ole32

CoInitialize
CoCreateInstance

oleaut32

CreateErrorInfo
SetErrorInfo
VariantInit
SysAllocString
SysFreeString
VariantChangeType
GetErrorInfo
VariantClear

winmm

PlaySoundA
mixerClose
mixerGetControlDetailsA
timeGetTime
timeEndPeriod
timeBeginPeriod
mixerGetLineInfoA
mixerGetDevCapsA
mixerOpen
mixerSetControlDetails
mixerGetLineControlsA

wsock32

send
recv
closesocket
WSAGetLastError
select
__WSAFDIsSet
connect
htons
gethostbyname
ioctlsocket
inet_ntoa
socket
WSAStartup
WSACleanup

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 214KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 436KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

78f90425680ee26368c6d6bdd75562db

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

winmm

wsock32

Sections

.text Size: 2.4MB - Virtual size: 2.4MB

.rdata Size: 214KB - Virtual size: 214KB

.data Size: 80KB - Virtual size: 436KB

.rsrc Size: 110KB - Virtual size: 110KB

.text
Size: 2.4MB - Virtual size: 2.4MB

.rdata
Size: 214KB - Virtual size: 214KB

.data
Size: 80KB - Virtual size: 436KB

.rsrc
Size: 110KB - Virtual size: 110KB