General

  • Target

    2024-01-08_8bd8c4c57ada6d78a60b5f6c37150fd0_mafia_magniber

  • Size

    3.5MB

  • Sample

    240109-hhg9vseagn

  • MD5

    8bd8c4c57ada6d78a60b5f6c37150fd0

  • SHA1

    7c75657786c76c3f4d6387ff68043cda070a8008

  • SHA256

    0893abeaac172f847b0b04e843220f30f5e58f926ae549cb913d360a7a9b4556

  • SHA512

    69cee9b49304d301c44620856e4ca82246f909b06b411fc2cb25e13bcf686e5174b28603fad524f0974d3394deb4ce64ef6a5a0c0da9aab962bc4910830c1448

  • SSDEEP

    98304:Zp7FTc3bNOkRRWEl5+S9UA8Jx/PtQAcAWCF9clU24TN:ZBFayS9qnkAxF9clP0

Malware Config

Targets

    • Target

      2024-01-08_8bd8c4c57ada6d78a60b5f6c37150fd0_mafia_magniber

    • Size

      3.5MB

    • MD5

      8bd8c4c57ada6d78a60b5f6c37150fd0

    • SHA1

      7c75657786c76c3f4d6387ff68043cda070a8008

    • SHA256

      0893abeaac172f847b0b04e843220f30f5e58f926ae549cb913d360a7a9b4556

    • SHA512

      69cee9b49304d301c44620856e4ca82246f909b06b411fc2cb25e13bcf686e5174b28603fad524f0974d3394deb4ce64ef6a5a0c0da9aab962bc4910830c1448

    • SSDEEP

      98304:Zp7FTc3bNOkRRWEl5+S9UA8Jx/PtQAcAWCF9clU24TN:ZBFayS9qnkAxF9clP0

    • Banload

      Banload variants download malicious files, then install and execute the files.

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v15

Tasks