Static task
static1
Behavioral task
behavioral1
Sample
2024-01-10_8f20fd336156c9cfe8e2ba8874aea786_hacktools_magniber.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral2
Sample
2024-01-10_8f20fd336156c9cfe8e2ba8874aea786_hacktools_magniber.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
General
-
Target
2024-01-10_8f20fd336156c9cfe8e2ba8874aea786_hacktools_magniber
-
Size
22.7MB
-
MD5
8f20fd336156c9cfe8e2ba8874aea786
-
SHA1
02ece0bef452db6ee09ad7bb8e94665524d5e3da
-
SHA256
e3e192fb9195bbc90d9c2db14b196c732ca9a42fd65d6c449611358a72a9c3b7
-
SHA512
344c1d999eb6c0ff193a9649057d3d356487e49298e59cfb53d0e64b15dd24a925975f22a017fb1c5d93baee3c9010dc7b4fcbc0c661f6af5bdc974c0a3586c3
-
SSDEEP
393216:4tHY2Rsd/IMvZ7lWA7tdeBuTYjE8CpH6fq3:yY2RshLZwApdeE4
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-01-10_8f20fd336156c9cfe8e2ba8874aea786_hacktools_magniber
Files
-
2024-01-10_8f20fd336156c9cfe8e2ba8874aea786_hacktools_magniber.exe windows:6 windows x86 arch:x86
744e6b27f30d6eef4ac9c985d30b30e1
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
awesomium
??1Load@WebViewListener@Awesomium@@MAE@XZ
??0View@WebViewListener@Awesomium@@QAE@XZ
??1View@WebViewListener@Awesomium@@MAE@XZ
??0WebKeyboardEvent@Awesomium@@QAE@IIJ@Z
??0Load@WebViewListener@Awesomium@@QAE@XZ
??1Process@WebViewListener@Awesomium@@MAE@XZ
??0Process@WebViewListener@Awesomium@@QAE@XZ
??1InputMethodEditor@WebViewListener@Awesomium@@MAE@XZ
??0InputMethodEditor@WebViewListener@Awesomium@@QAE@XZ
?Initialize@WebCore@Awesomium@@SAPAV12@ABUWebConfig@2@@Z
?Shutdown@WebCore@Awesomium@@SAXXZ
?instance@WebCore@Awesomium@@SAPAV12@XZ
?buffer@BitmapSurface@Awesomium@@QBEPBEXZ
?height@BitmapSurface@Awesomium@@QBEHXZ
??1WebString@Awesomium@@QAE@XZ
?width@BitmapSurface@Awesomium@@QBEHXZ
??1WebConfig@Awesomium@@QAE@XZ
??0WebURL@Awesomium@@QAE@ABVWebString@1@@Z
??0WebConfig@Awesomium@@QAE@XZ
?CreateFromUTF8@WebString@Awesomium@@SA?AV12@PBDI@Z
??1WebURL@Awesomium@@QAE@XZ
?IsValid@WebURL@Awesomium@@QBE_NXZ
imm32
ImmSetCompositionStringW
ImmIsUIMessageW
ImmReleaseContext
ImmGetContext
ImmGetIMEFileNameA
ImmGetDescriptionA
ImmGetOpenStatus
ImmGetConversionStatus
ImmSetConversionStatus
ImmSetOpenStatus
ImmNotifyIME
ImmGetCompositionStringW
ImmSetCandidateWindow
ImmSetCompositionWindow
ImmGetProperty
ImmGetCandidateListW
ImmGetVirtualKey
ImmAssociateContextEx
winmm
mmioClose
mmioOpenA
timeGetTime
timeEndPeriod
mmioRead
mmioWrite
mmioDescend
mmioAscend
timeGetDevCaps
timeBeginPeriod
timeKillEvent
timeSetEvent
ws2_32
sendto
WSASend
bind
listen
accept
recvfrom
send
htonl
ioctlsocket
gethostname
getnameinfo
ntohl
ntohs
inet_ntoa
getsockname
getpeername
select
__WSAFDIsSet
WSASetLastError
getservbyname
gethostbyaddr
getservbyport
WSAAsyncSelect
WSAGetLastError
WSACleanup
WSAStartup
gethostbyname
socket
shutdown
setsockopt
recv
inet_addr
htons
connect
closesocket
version
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
fmodex
?addGroup@ChannelGroup@FMOD@@QAG?AW4FMOD_RESULT@@PAV12@@Z
?getMute@ChannelGroup@FMOD@@QAG?AW4FMOD_RESULT@@PA_N@Z
?setMute@ChannelGroup@FMOD@@QAG?AW4FMOD_RESULT@@_N@Z
?getPaused@ChannelGroup@FMOD@@QAG?AW4FMOD_RESULT@@PA_N@Z
?setPaused@ChannelGroup@FMOD@@QAG?AW4FMOD_RESULT@@_N@Z
?getVolume@ChannelGroup@FMOD@@QAG?AW4FMOD_RESULT@@PAM@Z
?setVolume@ChannelGroup@FMOD@@QAG?AW4FMOD_RESULT@@M@Z
?release@ChannelGroup@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?setMode@Channel@FMOD@@QAG?AW4FMOD_RESULT@@I@Z
?setChannelGroup@Channel@FMOD@@QAG?AW4FMOD_RESULT@@PAVChannelGroup@2@@Z
?setPriority@Channel@FMOD@@QAG?AW4FMOD_RESULT@@H@Z
?setPaused@Channel@FMOD@@QAG?AW4FMOD_RESULT@@_N@Z
?getMasterChannelGroup@System@FMOD@@QAG?AW4FMOD_RESULT@@PAPAVChannelGroup@2@@Z
?playSound@System@FMOD@@QAG?AW4FMOD_RESULT@@W4FMOD_CHANNELINDEX@@PAVSound@2@_NPAPAVChannel@2@@Z
?createChannelGroup@System@FMOD@@QAG?AW4FMOD_RESULT@@PBDPAPAVChannelGroup@2@@Z
?createStream@System@FMOD@@QAG?AW4FMOD_RESULT@@PBDIPAUFMOD_CREATESOUNDEXINFO@@PAPAVSound@2@@Z
?createSound@System@FMOD@@QAG?AW4FMOD_RESULT@@PBDIPAUFMOD_CREATESOUNDEXINFO@@PAPAVSound@2@@Z
?update@System@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?close@System@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?init@System@FMOD@@QAG?AW4FMOD_RESULT@@HIPAX@Z
?setSpeakerMode@System@FMOD@@QAG?AW4FMOD_RESULT@@W4FMOD_SPEAKERMODE@@@Z
?setDSPBufferSize@System@FMOD@@QAG?AW4FMOD_RESULT@@IH@Z
?setSoftwareFormat@System@FMOD@@QAG?AW4FMOD_RESULT@@HW4FMOD_SOUND_FORMAT@@HHW4FMOD_DSP_RESAMPLER@@@Z
?getDriverCaps@System@FMOD@@QAG?AW4FMOD_RESULT@@HPAIPAH1PAW4FMOD_SPEAKERMODE@@@Z
?getDriverInfo@System@FMOD@@QAG?AW4FMOD_RESULT@@HPADHPAUFMOD_GUID@@@Z
?getNumDrivers@System@FMOD@@QAG?AW4FMOD_RESULT@@PAH@Z
?setOutput@System@FMOD@@QAG?AW4FMOD_RESULT@@W4FMOD_OUTPUTTYPE@@@Z
?release@System@FMOD@@QAG?AW4FMOD_RESULT@@XZ
FMOD_System_Create
?release@Sound@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?getUserData@Channel@FMOD@@QAG?AW4FMOD_RESULT@@PAPAX@Z
?setUserData@Channel@FMOD@@QAG?AW4FMOD_RESULT@@PAX@Z
?setCallback@Channel@FMOD@@QAG?AW4FMOD_RESULT@@P6G?AW43@PAUFMOD_CHANNEL@@W4FMOD_CHANNEL_CALLBACKTYPE@@PAX2@Z@Z
?stop@Channel@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?stop@ChannelGroup@FMOD@@QAG?AW4FMOD_RESULT@@XZ
kernel32
lstrcpynA
CreateToolhelp32Snapshot
Process32First
Process32Next
Module32First
Module32Next
GetFileSize
ReadFile
GetLastError
CreateDirectoryA
DeleteFileA
FileTimeToLocalFileTime
FindClose
GetFileAttributesA
GetFullPathNameA
RemoveDirectoryA
FileTimeToSystemTime
QueryPerformanceCounter
QueryPerformanceFrequency
GetCurrentProcess
SetThreadPriority
GetThreadPriority
SetPriorityClass
GetPriorityClass
GetVersionExA
GetProcessAffinityMask
SetProcessAffinityMask
GlobalLock
GlobalUnlock
GlobalAlloc
FindFirstFileW
FindNextFileW
WinExec
GetPrivateProfileIntA
SetEvent
OpenEventA
WaitForSingleObject
CreateEventA
CreateProcessA
DecodePointer
RaiseException
InitializeCriticalSectionEx
DeleteCriticalSection
CreateDirectoryW
GetFileAttributesW
GetLocalTime
lstrlenA
CreateThread
GetExitCodeThread
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetFilePointer
FreeLibrary
GetProcAddress
lstrcmpiA
LoadLibraryA
GetStdHandle
SetLastError
ReadConsoleOutputA
FillConsoleOutputCharacterA
FillConsoleOutputAttribute
GetConsoleScreenBufferInfo
SetConsoleCursorPosition
SetConsoleTextAttribute
FreeConsole
GetConsoleTitleA
SetConsoleTitleA
AllocConsole
SetConsoleMode
GetPrivateProfileSectionW
OutputDebugStringA
OutputDebugStringW
WritePrivateProfileStringA
SetFileAttributesA
SetUnhandledExceptionFilter
ExitProcess
TerminateProcess
OpenProcess
GetModuleHandleA
GetPrivateProfileIntW
GetPrivateProfileStringW
CopyFileA
GlobalMemoryStatus
ResetEvent
ReleaseMutex
GetExitCodeProcess
TerminateThread
ResumeThread
GetSystemDirectoryA
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
GetModuleFileNameW
WaitForMultipleObjects
lstrcatA
OpenMutexA
OpenFileMappingA
MoveFileExA
lstrcpyA
SetStdHandle
DuplicateHandle
CreatePipe
PeekNamedPipe
CreateFileW
DeviceIoControl
GetComputerNameA
MoveFileA
SystemTimeToFileTime
FlushFileBuffers
GetFileInformationByHandle
GetFileType
SetFileTime
FileTimeToDosDateTime
DosDateTimeToFileTime
GetWindowsDirectoryA
VerSetConditionMask
GetDiskFreeSpaceExA
GetSystemInfo
GetModuleHandleW
VerifyVersionInfoA
GetSystemPowerStatus
GetLocaleInfoA
ReadProcessMemory
GetWindowsDirectoryW
IsWow64Process
DeleteFileW
SetFileAttributesW
GetFileSizeEx
InterlockedExchangeAdd
InterlockedCompareExchange
lstrcpyW
SetErrorMode
InterlockedExchange
CreateSemaphoreA
ReleaseSemaphore
SuspendThread
SetThreadAffinityMask
GetTimeZoneInformation
GetVersionExW
LocalFree
FormatMessageA
GetLocaleInfoW
GetThreadTimes
CreateFileMappingA
UnmapViewOfFile
MapViewOfFile
CloseHandle
WriteFile
CreateFileA
IsBadReadPtr
GetThreadContext
GetCurrentThread
WideCharToMultiByte
MultiByteToWideChar
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
GetTickCount
Sleep
FindNextFileA
FindFirstFileA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetModuleFileNameA
SetEndOfFile
GetCurrentProcessId
GetPrivateProfileStringA
CreateMutexA
GetCurrentThreadId
GetCommandLineA
GetCommandLineW
FormatMessageW
GetStringTypeW
EncodePointer
InitializeCriticalSectionAndSpinCount
CreateEventW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
CompareStringW
LCMapStringW
GetCPInfo
IsDebuggerPresent
WaitForSingleObjectEx
UnhandledExceptionFilter
IsProcessorFeaturePresent
InitializeSListHead
GetStartupInfoW
LocalFileTimeToFileTime
CompareFileTime
GetSystemTime
GetACP
GetOEMCP
GetFullPathNameW
GetCurrentDirectoryW
GetTempPathW
GetTempPathA
MoveFileW
CopyFileW
SetCurrentDirectoryW
RemoveDirectoryW
GetFileTime
RtlUnwind
InterlockedPushEntrySList
InterlockedFlushSList
SetEnvironmentVariableW
WriteConsoleW
GetProcessHeap
SetConsoleCtrlHandler
MoveFileExW
HeapQueryInformation
LoadLibraryExW
FindFirstFileExW
SystemTimeToTzSpecificLocalTime
GetDriveTypeW
GetModuleHandleExW
GetFileAttributesExW
ExitThread
FreeLibraryAndExitThread
HeapAlloc
HeapReAlloc
HeapFree
GetConsoleMode
ReadConsoleW
GetConsoleCP
SetFilePointerEx
GetDateFormatW
GetTimeFormatW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
HeapSize
FindFirstFileExA
user32
SetFocus
SetTimer
OpenClipboard
CloseClipboard
SendMessageA
ChangeClipboardChain
GetClipboardData
IsClipboardFormatAvailable
GetDC
SetClipboardViewer
GetDoubleClickTime
SetClipboardData
EmptyClipboard
ClientToScreen
PostMessageW
GetAsyncKeyState
GetForegroundWindow
IntersectRect
RegisterHotKey
UnregisterHotKey
EnumDisplaySettingsA
MessageBoxW
SetRect
UnregisterClassA
CallWindowProcW
CreateWindowExW
GetCursorPos
ShowWindow
GetCaretPos
GetWindowLongW
SetWindowLongA
SetWindowLongW
GetKeyboardLayoutNameA
GetKeyboardLayout
IsWindowVisible
DrawMenuBar
GetSystemMenu
RemoveMenu
UpdateWindow
EnumChildWindows
GetClassNameA
GetWindowThreadProcessId
CharPrevA
TrackMouseEvent
TranslateMessage
DispatchMessageW
PeekMessageW
DefWindowProcW
KillTimer
PostQuitMessage
GetFocus
RegisterClassExW
IsIconic
SetCapture
GetSystemMetrics
SetForegroundWindow
ScreenToClient
DestroyWindow
ReleaseCapture
GetActiveWindow
ToAscii
GetKeyboardState
GetKeyState
FindWindowA
PtInRect
OffsetRect
SendMessageW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetDesktopWindow
MessageBoxA
GetWindowRect
wsprintfA
SetWindowPos
ToUnicodeEx
ReleaseDC
BeginPaint
EndPaint
AdjustWindowRect
ShowCursor
LoadCursorA
LoadIconA
ChangeDisplaySettingsA
SystemParametersInfoA
SetCursorPos
ActivateKeyboardLayout
GetKeyboardLayoutList
SendInput
MapVirtualKeyW
GetWindowInfo
gdi32
GetTextMetricsW
EnumFontFamiliesExW
GetKerningPairsW
CreateFontW
GetGlyphOutlineW
SetPixelFormat
GetStockObject
ChoosePixelFormat
SwapBuffers
TextOutA
CreateDIBSection
SetTextColor
SetBkColor
SelectObject
DeleteDC
CreateCompatibleDC
GetTextExtentPointA
DeleteObject
CreateFontA
GetTextExtentPoint32A
advapi32
CryptGetUserKey
CryptGenKey
CryptExportKey
CryptGetProvParam
CryptEnumProvidersA
CryptAcquireContextW
RegSetValueExW
RegCreateKeyExA
RegQueryValueExA
RegDeleteKeyA
RegSetValueExA
RegOpenKeyExA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegCreateKeyA
RegDeleteValueA
RegEnumValueA
CryptAcquireContextA
CryptReleaseContext
CryptDestroyKey
CryptImportKey
CryptEncrypt
CryptDeriveKey
CryptGetHashParam
CryptDecrypt
CryptCreateHash
CryptHashData
CryptDestroyHash
CryptVerifySignatureA
GetUserNameA
RegOpenKeyExW
RegQueryValueExW
RegEnumKeyExA
RegQueryInfoKeyW
CryptGenRandom
RegCloseKey
shell32
ShellExecuteA
ShellExecuteExA
ole32
CoCreateInstance
CoInitialize
CoTaskMemFree
oleaut32
VariantInit
VariantClear
SysAllocStringByteLen
SysStringLen
SysAllocString
SysFreeString
glew32
__glewActiveTexture
__glewVertexAttribPointer
__glewEnableVertexAttribArray
__glewDisableVertexAttribArray
__glewGenFramebuffers
__glewFramebufferTexture2D
__glewGetUniformLocation
__glewUseProgram
__glewUniformMatrix4fv
__glewUniform4f
__glewUnmapBuffer
__glewMapBuffer
__glewGenBuffers
__glewDeleteBuffers
__glewBufferData
__glewBindBuffer
__GLEW_VERSION_1_5
glewInit
__glewRenderbufferStorageEXT
__glewUniform1f
__glewUniform1i
__glewPointParameteri
__glewUniform3f
__glewUniform2f
__glewVertexAttribIPointer
__glewAttachShader
__glewCompileShader
__glewCreateProgram
__glewCreateShader
__glewDeleteShader
__glewDetachShader
__glewGetProgramInfoLog
__glewGetProgramiv
__glewGetShaderInfoLog
__glewGetShaderiv
__glewLinkProgram
__glewShaderSource
__glewBindFramebufferEXT
__glewGenerateMipmapEXT
__glewGenRenderbuffersEXT
__glewGenFramebuffersEXT
__glewBindRenderbufferEXT
__glewCheckFramebufferStatusEXT
__glewDeleteFramebuffersEXT
__glewDeleteRenderbuffersEXT
__glewFramebufferRenderbufferEXT
__glewFramebufferTexture2DEXT
__glewBindFramebuffer
opengl32
glEnableClientState
glScissor
glOrtho
glLoadMatrixf
glTexEnvfv
glClearStencil
glTexGeni
glTexGenfv
glTexSubImage2D
glPixelStorei
glFogi
glTexCoord2fv
glNormal3fv
wglMakeCurrent
wglDeleteContext
wglCreateContext
glTranslatef
glRotatef
glVertex2f
glFrontFace
glStencilMask
glCullFace
glStencilOp
glStencilFunc
glColor3ub
glFogfv
glFogf
glReadPixels
glDrawElements
glTexEnvf
glRotated
glLineWidth
glDepthRange
glDepthFunc
glColorMask
glColor4ub
glClearDepth
glClearColor
glAlphaFunc
glViewport
glPushAttrib
glPopAttrib
glLoadIdentity
glClear
glPolygonMode
glVertexPointer
glTexCoordPointer
glNormalPointer
glDisableClientState
glColorPointer
glTexEnvi
glGetTexLevelParameteriv
glDeleteTextures
glMatrixMode
glPushMatrix
glPopMatrix
glMultMatrixf
glGetString
glGetIntegerv
glGetBooleanv
glDepthMask
wglGetProcAddress
glDrawArrays
glBlendFunc
glTexParameteri
glTexParameterf
glTexImage2D
glGetFloatv
glGenTextures
glBindTexture
glVertex3fv
glTexCoord2f
glColor3fv
glColor3f
glVertex3f
glNormal3f
glEnd
glEnable
glDisable
glColor4f
glBegin
glu32
gluBuild2DMipmaps
gluLookAt
gluOrtho2D
gluPerspective
shlwapi
PathFileExistsA
dbghelp
MiniDumpWriteDump
SymFromAddr
SymInitialize
SymGetLineFromAddr64
SymCleanup
SymSetOptions
StackWalk64
iphlpapi
GetAdaptersInfo
GetNetworkParams
wininet
InternetConnectW
InternetOpenW
FtpCreateDirectoryA
FtpPutFileA
InternetConnectA
InternetReadFile
InternetOpenUrlA
InternetCloseHandle
InternetOpenA
FtpOpenFileW
HttpQueryInfoW
HttpSendRequestA
HttpOpenRequestW
InternetQueryDataAvailable
FtpFindFirstFileW
crypt32
CertGetSubjectCertificateFromStore
CertGetCertificateContextProperty
CertFreeCertificateContext
CryptMsgControl
CryptMsgGetParam
CryptMsgUpdate
CryptMsgOpenToDecode
CertCloseStore
CryptDecryptMessage
CertOpenStore
CryptSignMessage
CryptEncodeObject
CertDuplicateStore
CertDuplicateCertificateContext
CertEnumCertificatesInStore
CertFindCertificateInStore
CertAddEncodedCertificateToStore
CertSetCertificateContextProperty
CertAddCertificateContextToStore
CertSaveStore
CertDeleteCertificateFromStore
PFXExportCertStoreEx
CertVerifyRevocation
CertNameToStrA
CryptDecodeObject
CertGetIntendedKeyUsage
CertFreeCertificateChain
CertFreeCertificateChainEngine
CertGetCertificateChain
CertCreateCertificateChainEngine
CertCreateCertificateContext
CryptAcquireCertificatePrivateKey
CryptMsgClose
netapi32
NetApiBufferFree
NetWkstaGetInfo
Netbios
urlmon
URLDownloadToFileW
URLDownloadToFileA
Sections
.text Size: 19.9MB - Virtual size: 19.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2.3MB - Virtual size: 2.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 189KB - Virtual size: 134.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.gfids Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 9B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 270KB - Virtual size: 269KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ