2024-01-10_d746db3e1ea1745ab1b40fcba9a396cf_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-10_d746db3e1ea1745ab1b40fcba9a396cf_magniber
Size

4.3MB
MD5

d746db3e1ea1745ab1b40fcba9a396cf
SHA1

5ee16a502703c1f1e46c321f12b4f61be0b025f4
SHA256

4b0d2c9ee6a9785d1481ae547135c97aa4c9ef8eb6ef19a74d64bafa12579615
SHA512

dc669345c3c0110bc78d4d8cbcc31ccf3123091389e89dce4bb112519462a24e90715198e2948008fa4d49263f624553e2a8249b70a69eeeca91416a75e10dd8
SSDEEP

98304:AFSFCOJXudcHAgrmBukGW9t5mhqxPTUH4Edt9U5FLOAkGkzdnEVomFHKnPs:AFGXuOg8mQkfIdt9U5FLOyomFHKnPs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-10_d746db3e1ea1745ab1b40fcba9a396cf_magniber

Files

2024-01-10_d746db3e1ea1745ab1b40fcba9a396cf_magniber
.exe windows:6 windows x86 arch:x86

c3093802279e1f6088cfefbfb2ba6eb9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

libssl-3

OPENSSL_init_ssl

kernel32

GetStringTypeW
GetCPInfo
CompareStringEx
LCMapStringEx
InterlockedPushEntrySList
AreFileApisANSI
GetFileInformationByHandle
FindNextFileW
FindFirstFileExW
SleepConditionVariableSRW
WakeAllConditionVariable
WakeConditionVariable
InitializeConditionVariable
TryAcquireSRWLockExclusive
InitializeSRWLock
GetNativeSystemInfo
GetExitCodeThread
GetLocaleInfoEx
FormatMessageA
RaiseException
OutputDebugStringW
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
RtlUnwind
SetFilePointerEx
GetCommandLineA
GetCommandLineW
HeapQueryInformation
GetSystemInfo
VirtualAlloc
VirtualQuery
SetStdHandle
ExitProcess
GetConsoleMode
ReadConsoleW
GetConsoleOutputCP
GetDateFormatW
GetTimeFormatW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetTimeZoneInformation
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStartupInfoW
IsDebuggerPresent
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InitializeSListHead
ResetEvent
FindResourceExW
GetUserDefaultLCID
GetTempFileNameW
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
GetTickCount64
SystemTimeToTzSpecificLocalTime
GetDriveTypeW
GetFileTime
GetFileAttributesExW
FileTimeToLocalFileTime
SetErrorMode
VirtualProtect
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
FileTimeToSystemTime
GlobalGetAtomNameW
GetTempPathW
SetFilePointer
GetFileSize
GetFileAttributesW
CreateFileW
GetThreadLocale
DeleteFileW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetCurrentDirectoryW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
CompareStringW
GlobalFindAtomW
GetSystemDirectoryW
EncodePointer
GlobalAddAtomW
ResumeThread
SetThreadPriority
CreateEventW
WaitForSingleObject
SetEvent
CopyFileW
MulDiv
LocalFree
GlobalSize
GetCurrentProcessId
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrcpyW
GlobalFree
WriteConsoleW
lstrcmpW
lstrcmpA
GlobalDeleteAtom
LoadLibraryW
LoadLibraryExW
GetModuleHandleW
GetVersionExW
GetCurrentThreadId
OutputDebugStringA
GetCurrentThread
GetFileSizeEx
CreateFileA
VerifyVersionInfoW
VerSetConditionMask
WaitForMultipleObjects
PeekNamedPipe
ReadFile
GetFileType
GetStdHandle
GetEnvironmentVariableA
WaitForSingleObjectEx
MoveFileExA
FormatMessageW
SetLastError
GetTickCount
QueryPerformanceCounter
LoadLibraryA
GetProcAddress
GetModuleHandleA
FreeLibrary
GetSystemDirectoryA
QueryPerformanceFrequency
SleepEx
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
GetVolumeInformationA
WritePrivateProfileStringA
GetPrivateProfileStringA
CloseHandle
CreateProcessW
GetModuleFileNameW
Sleep
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
HeapFree
MultiByteToWideChar
GetLastError
WideCharToMultiByte
GlobalUnlock
GlobalLock
GlobalAlloc
CreateThread
FindResourceW
LoadResource
LockResource
SizeofResource

user32

KillTimer
SetTimer
RealChildWindowFromPoint
DeleteMenu
CopyImage
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MoveWindow
ShowWindow
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
GetTopWindow
GetClassLongW
SetWindowLongW
EqualRect
AdjustWindowRectEx
GetWindowTextLengthW
SetParent
MonitorFromPoint
TrackMouseEvent
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
CheckMenuItem
CharNextW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
IsZoomed
CharUpperW
GetAsyncKeyState
LoadMenuW
GetSystemMenu
NotifyWinEvent
SetCursorPos
UnionRect
BringWindowToTop
CreatePopupMenu
LockWindowUpdate
DestroyMenu
EnableScrollBar
CopyAcceleratorTableW
IsMenu
CreateWindowExW
InvalidateRgn
SetRect
IntersectRect
GetNextDlgGroupItem
MessageBeep
DestroyIcon
EnableMenuItem
LoadImageW
SetMenuItemBitmaps
GetDoubleClickTime
GetIconInfo
CopyIcon
GetMenuItemInfoW
GetMenuDefaultItem
SetMenuDefaultItem
ModifyMenuW
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadBitmapW
GetMessageW
TranslateMessage
DestroyAcceleratorTable
LoadIconW
PostQuitMessage
SendMessageW
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
EnableWindow
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
UnregisterClassW
PostMessageW
SetWindowPos
SetWindowContextHelpId
GetParent
GetWindow
MapDialogRect
RegisterWindowMessageW
DrawEdge
DrawFrameControl
IsWindowVisible
GetFocus
DrawStateW
SetWindowRgn
RedrawWindow
GetWindowRect
MapWindowPoints
GetSysColor
GetSysColorBrush
DrawFocusRect
FillRect
PtInRect
OffsetRect
IsRectEmpty
DrawIconEx
IsWindow
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongW
GetDesktopWindow
DefWindowProcW
GetClassInfoW
SetLayeredWindowAttributes
SetRectEmpty
CopyRect
LoadCursorW
SystemParametersInfoW
GetMonitorInfoW
EnumDisplayMonitors
MessageBoxW
GetWindowThreadProcessId
GetLastActivePopup
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
GetDC
GetWindowDC
DispatchMessageW
ReleaseDC
BeginPaint
EndPaint
ClientToScreen
SetClassLongW
GetUpdateRect
SendDlgItemMessageA
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
MapVirtualKeyW
LoadAcceleratorsW
CreateAcceleratorTableW
UpdateLayeredWindow
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
RegisterClipboardFormatW
GetKeyNameTextW
SubtractRect
CharUpperBuffW
FrameRect
IsClipboardFormatAvailable
PostThreadMessageW
IsCharLowerW
MapVirtualKeyExW
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
GetComboBoxInfo
CreateMenu
DestroyCursor
GetWindowRgn
HideCaret
InvertRect
InflateRect
ScreenToClient
GetCursorPos
PeekMessageW
GetKeyState
ValidateRect
ShowOwnedPopups
SetCursor
UpdateWindow
InvalidateRect
GetClassNameW
GetMessagePos
GetMessageTime
CallWindowProcW
RegisterClassW
GetClassInfoExW

gdi32

LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
TextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
IntersectClipRect
GetMapMode
SetRectRgn
DPtoLP
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
Rectangle
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
SetPixelV
GetTextFaceW
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
DeleteDC
CombineRgn
CreateEllipticRgn
CreateHatchBrush
CreateRectRgn
CreateRectRgnIndirect
CreateSolidBrush
Ellipse
GetBkColor
GetTextColor
GetTextExtentPoint32W
PatBlt
ExtTextOutW
CreatePolygonRgn
Polygon
Polyline
GetTextMetricsW
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBitmap
CreateFontIndirectW
CreatePen
CreatePatternBrush
DeleteObject
EnumFontFamiliesW
GetDeviceCaps
GetStockObject
GetTextCharsetInfo
GetObjectW
CopyMetaFileW
CreateDCW
GetRgnBox
CreateBitmap

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegEnumKeyExW
CryptReleaseContext
CryptGetHashParam
CryptCreateHash
CryptHashData
CryptDestroyHash
CryptDestroyKey
CryptImportKey
CryptEncrypt
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegEnumKeyW
CryptAcquireContextA
RegEnumValueW
RegQueryValueW

shell32

DragQueryFileW
SHGetFileInfoW
SHAppBarMessage
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
ShellExecuteW
DragFinish

comctl32

InitCommonControlsEx

shlwapi

PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathFindExtensionW
StrFormatKBSizeW
PathRemoveFileSpecW

uxtheme

GetThemeSysColor
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
DrawThemeParentBackground
IsAppThemed
DrawThemeText
GetWindowTheme
GetThemePartSize
IsThemeBackgroundPartiallyTransparent

ole32

RegisterDragDrop
CoInitializeSecurity
CoRegisterMessageFilter
CoRevokeClassObject
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
RevokeDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoDisconnectObject
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoUninitialize
CoInitializeEx
CoSetProxyBlanket
CoCreateInstance

oleaut32

VarBstrFromDate
LoadTypeLi
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
VariantChangeType
SysStringLen
SysAllocStringLen
SysFreeString
VariantClear
VariantInit
SysAllocString
VariantCopy

oledlg

OleUIBusyW

gdiplus

GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipGetImageGraphicsContext
GdiplusShutdown
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDrawImageRectI
GdipGetImageWidth
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePaletteSize
GdipSetInterpolationMode
GdipDisposeImage
GdipCreateBitmapFromStream

ws2_32

WSAGetLastError
connect
getsockopt
htons
WSASetLastError
WSAIoctl
__WSAFDIsSet
recvfrom
ioctlsocket
gethostname
setsockopt
WSAEventSelect
WSAEnumNetworkEvents
WSACreateEvent
WSACloseEvent
WSASocketW
closesocket
socket
sendto
accept
listen
getpeername
getsockname
WSACleanup
WSAStartup
getnameinfo
ntohs
freeaddrinfo
bind
getaddrinfo
shutdown
select
send
recv
htonl

crypt32

CertOpenStore
CertCloseStore
CertEnumCertificatesInStore
CertFindCertificateInStore
CertFreeCertificateContext
CryptStringToBinaryA
PFXImportCertStore
CryptDecodeObjectEx
CertAddCertificateContextToStore
CertFindExtension
CertGetNameStringA
CryptQueryObject
CertCreateCertificateChainEngine
CertFreeCertificateChainEngine
CertGetCertificateChain
CertFreeCertificateChain

iphlpapi

GetAdaptersInfo

wldap32

ord217
ord143
ord41
ord22
ord211
ord60
ord45
ord27
ord32
ord33
ord35
ord79
ord30
ord200
ord301
ord46
ord26
ord50

normaliz

IdnToAscii

bcrypt

BCryptGenRandom

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 463KB - Virtual size: 463KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3093802279e1f6088cfefbfb2ba6eb9

Headers

DLL Characteristics

File Characteristics

Imports

libssl-3

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

ws2_32

crypt32

iphlpapi

wldap32

normaliz

bcrypt

oleacc

imm32

winmm

Sections

.text Size: 2.2MB - Virtual size: 2.2MB

.rdata Size: 463KB - Virtual size: 463KB

.data Size: 54KB - Virtual size: 77KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 173KB - Virtual size: 172KB

.text
Size: 2.2MB - Virtual size: 2.2MB

.rdata
Size: 463KB - Virtual size: 463KB

.data
Size: 54KB - Virtual size: 77KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 173KB - Virtual size: 172KB