2024-01-10_c084b4cb9185bffa454ebc4ec33286bc_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-10_c084b4cb9185bffa454ebc4ec33286bc_magniber
Size

3.0MB
MD5

c084b4cb9185bffa454ebc4ec33286bc
SHA1

2d789c8e3a343b66122d22936a153cdd9d85d5eb
SHA256

e6dc5da04f86dadc1c28e4904bafcffd9e2c86ae431f278b04880b6f6c2ea896
SHA512

0911db0fb6e67b620c92b4b61c6707fe766d8b2b1bc621ace88210c9d827fd17f667750de7d2479785ce30a09b1479316be36c27050754d085dcc3b2e7e039bb
SSDEEP

98304:7jFhQat1Ro4i0jBO7zctLRYs69pDhiKVm0:7jFht1R53BOvcz94pViKV3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-10_c084b4cb9185bffa454ebc4ec33286bc_magniber

Files

2024-01-10_c084b4cb9185bffa454ebc4ec33286bc_magniber
.exe windows:5 windows x86 arch:x86

6da59a8d64171e132c7773206bfb6aa8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetReadFile
InternetSetOptionW
HttpQueryInfoW
InternetQueryOptionW
InternetCloseHandle
InternetOpenUrlW
InternetGetConnectedState
InternetOpenW

winhttp

WinHttpCloseHandle
WinHttpReadData
WinHttpQueryDataAvailable
WinHttpQueryHeaders
WinHttpReceiveResponse
WinHttpSendRequest
WinHttpOpenRequest
WinHttpConnect
WinHttpCrackUrl
WinHttpOpen

kernel32

GetCurrentThreadId
SetLastError
GetCurrentProcess
lstrcmpW
DeviceIoControl
CreateFileA
SetPriorityClass
GetFileAttributesW
SetFileAttributesW
GetDiskFreeSpaceExW
FindFirstFileW
FindNextFileW
OpenProcess
TerminateProcess
WaitForSingleObject
GetCurrentProcessId
QueryPerformanceCounter
GetExitCodeThread
SetThreadPriority
SetEnvironmentVariableA
WriteConsoleW
SetEndOfFile
SetStdHandle
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetTimeZoneInformation
TlsFree
GetModuleFileNameW
TlsGetValue
TlsAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
FlushFileBuffers
GetStringTypeW
HeapSize
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
GetFileAttributesExW
GetConsoleCP
WriteFile
GetStartupInfoW
GetStdHandle
SetFilePointer
ReadConsoleW
GetConsoleMode
GetFileType
CreateFileW
SetFilePointerEx
IsDebuggerPresent
AreFileApisANSI
GetModuleHandleExW
ExitProcess
RtlUnwind
GetSystemTimeAsFileTime
DecodePointer
EncodePointer
ReadFile
IsProcessorFeaturePresent
GetProcessHeap
HeapFree
HeapAlloc
LoadLibraryExW
GetLastError
OutputDebugStringA
DeleteCriticalSection
CloseHandle
CreateThread
InitializeCriticalSection
GetCurrentDirectoryW
GlobalUnlock
GlobalLock
GlobalAlloc
WritePrivateProfileStringW
InitializeCriticalSectionAndSpinCount
DeleteFileW
GetCommandLineW
LoadLibraryW
GetLogicalDriveStringsW
lstrcpyW
GetTickCount
GetLocalTime
Sleep
LeaveCriticalSection
EnterCriticalSection
LocalFree
GetProcAddress
FreeLibrary
InterlockedIncrement
GetVersionExW
CreateDirectoryW
GetTempPathW
FindResourceW
OutputDebugStringW
GetModuleHandleW
lstrlenW
lstrlenA
SizeofResource
LoadResource
DebugBreak
LockResource
FreeResource
InterlockedDecrement
WideCharToMultiByte
MultiByteToWideChar
RaiseException
TlsSetValue
CreateEventW
HeapReAlloc
ExitThread

user32

UnregisterClassW
CallNextHookEx
SetWindowsHookExW
UnhookWindowsHookEx
WindowFromPoint
DrawIconEx
DestroyWindow
wsprintfW
CharNextW
LoadStringW
PostQuitMessage
IsZoomed
SetCursor
LoadCursorW
ShowWindow
GetDC
ReleaseDC
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetClipboardData
PtInRect
ClientToScreen
GetKeyState
IntersectRect
SetTimer
PostMessageW
GetFocus
IsWindowVisible
GetCapture
SetCapture
ReleaseCapture
KillTimer
DrawTextW
GetCursorPos
SystemParametersInfoW
GetWindowRect
GetParent
IsWindow
GetWindowLongW
SetWindowLongW
GetMessageW
TranslateMessage
DispatchMessageW
GetClientRect
CreateWindowExW
SetWindowPos
SetWindowRgn
GetClassLongW
SetLayeredWindowAttributes
FillRect
GetWindowDC
UpdateLayeredWindow
GetWindowTextW
BeginPaint
EndPaint
TrackMouseEvent
SetFocus
IsIconic
ScreenToClient
SendMessageW
LoadIconW
RegisterClassExW
RegisterClipboardFormatW
DefWindowProcW
DrawTextA
MessageBoxW
FrameRect

gdi32

TextOutW
FrameRgn
FillRgn
CreatePolygonRgn
GetObjectType
SetBitmapBits
GetBitmapBits
GetCurrentObject
LineTo
MoveToEx
Rectangle
CreatePen
SetPixel
ExtTextOutW
SetBkColor
CreateCompatibleBitmap
SetViewportOrgEx
BitBlt
CreateRoundRectRgn
GetTextColor
GetObjectW
CreateFontIndirectW
DeleteDC
SetBkMode
SetTextColor
GetStockObject
CreateCompatibleDC
SelectClipRgn
CreateRectRgn
GetTextExtentPoint32W
GetTextMetricsW
SelectObject
DeleteObject
CreateSolidBrush

advapi32

RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyW
RegCloseKey
RegQueryValueExW
RegOpenKeyW

shell32

CommandLineToArgvW
SHGetSpecialFolderPathW
ShellExecuteW
SHGetFolderPathW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
SHBrowseForFolderW

ole32

CreateStreamOnHGlobal
CoCreateInstance
CoInitializeEx
CoUninitialize
CoInitialize

oleaut32

SysAllocStringLen
SysFreeString
SysStringLen
SysAllocString

shlwapi

PathCombineW
PathFileExistsW
PathAppendW

msimg32

GradientFill

gdiplus

GdipSetImageAttributesWrapMode
GdipSetImageAttributesRemapTable
GdipDrawImageRectI
GdipCreateLineBrushFromRectI
GdipSetSmoothingMode
GdiplusShutdown
GdiplusStartup
GdipFillRectangleI
GdipCreateSolidFill
GdipCreateFromHDC
GdipCloneBitmapArea
GdipCreateBitmapFromResource
GdipLoadImageFromStream
GdipDeleteGraphics
GdipDrawImageRectRectI
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipDisposeImage
GdipCloneImage
GdipAlloc
GdipFree
GdipLoadImageFromFile
GdipGetImageHeight
GdipGetImageWidth
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipImageSelectActiveFrame
GdipDeleteBrush

ws2_32

WSACleanup
WSAStartup

iphlpapi

GetAdaptersAddresses

setupapi

SetupIterateCabinetW

imm32

ImmReleaseContext
ImmGetContext
ImmSetCompositionWindow

Sections

.text
Size: 765KB - Virtual size: 765KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 249KB - Virtual size: 249KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 222KB - Virtual size: 222KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6da59a8d64171e132c7773206bfb6aa8

Headers

DLL Characteristics

File Characteristics

Imports

wininet

winhttp

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

msimg32

gdiplus

ws2_32

iphlpapi

setupapi

imm32

Sections

.text Size: 765KB - Virtual size: 765KB

.rdata Size: 249KB - Virtual size: 249KB

.data Size: 20KB - Virtual size: 73KB

.rsrc Size: 3.4MB - Virtual size: 3.4MB

.reloc Size: 222KB - Virtual size: 222KB

.text
Size: 765KB - Virtual size: 765KB

.rdata
Size: 249KB - Virtual size: 249KB

.data
Size: 20KB - Virtual size: 73KB

.rsrc
Size: 3.4MB - Virtual size: 3.4MB

.reloc
Size: 222KB - Virtual size: 222KB