Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-13_7c6a0d57b2684ad48964639898556475_magniber.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-13_7c6a0d57b2684ad48964639898556475_magniber.exe
Resource
win10v2004-20231215-en
Target
2024-02-13_7c6a0d57b2684ad48964639898556475_magniber
Size
1.1MB
MD5
7c6a0d57b2684ad48964639898556475
SHA1
ab217b2e9e5c84751574f728e0a1898b4ae58c60
SHA256
87fba943464c04f2c7b217913fc4b049d694ea775ac6a421295a7d9ef3efe7f9
SHA512
98af2a04fc2ccd91c352631b07c839ad47a1d8f20a8abd768dc502203ce40c1a14203004c5ad1b901d413bcc9de915dc2fd797bbf77350c09a9d15291337ebf4
SSDEEP
24576:hdkSQqAyR+fsgKdYCziGoXQopLTiCKATr8JsGii:gzfsgKdBzgpLTp8Jf7
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
D:\Jenkins\.jenkins\workspace\dump_uper\DumpUper\Release\DumpUper.pdb
GetStringTypeW
SetFilePointer
LoadLibraryExA
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
FlushInstructionCache
MulDiv
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
GetVersionExW
CreateFileW
CreateDirectoryW
GetTempPathW
OutputDebugStringW
CloseHandle
ReadProcessMemory
TerminateProcess
OpenProcess
MultiByteToWideChar
GetModuleFileNameW
LoadLibraryExW
lstrcmpiW
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
DecodePointer
LocalFree
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
SetLastError
GetCurrentThreadId
RaiseException
TlsAlloc
WritePrivateProfileStringW
GetPrivateProfileStringW
FindResourceExW
OutputDebugStringA
SetEnvironmentVariableW
FormatMessageW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExW
FindFirstFileExA
LockResource
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
GetTempFileNameW
FlushFileBuffers
ReadFile
WriteFile
GetFileSize
GetCurrentProcessId
FindNextFileW
FindFirstFileW
DeleteFileW
GetCommandLineW
FindClose
CreateEventW
FindResourceW
GetModuleHandleExW
GetModuleHandleW
LoadLibraryW
SizeofResource
LoadResource
GetLastError
GetCurrentProcess
GetProcessHeap
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
WriteConsoleW
SetEndOfFile
SetStdHandle
SetConsoleCtrlHandler
ReadConsoleW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
EncodePointer
IsDebuggerPresent
SetEnvironmentVariableA
SwitchToThread
CompareStringW
LCMapStringW
GetLocaleInfoW
WideCharToMultiByte
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
GetTimeFormatW
HeapDestroy
GetProcAddress
FreeLibrary
GetDateFormatW
GetCurrentThread
FreeLibraryAndExitThread
ResumeThread
ExitThread
CreateThread
GetACP
GetStdHandle
GetModuleFileNameA
GetFileSizeEx
ExitProcess
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
SetFilePointerEx
GetFileType
InterlockedFlushSList
RtlUnwind
CreateProcessW
lstrlenW
GetExitCodeProcess
LocalAlloc
GetLocalTime
QueryPerformanceCounter
GetStartupInfoW
WaitForSingleObjectEx
ResetEvent
SetEvent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetSystemWindowsDirectoryW
FreeResource
Sleep
InterlockedCompareExchange
CreateFileA
GetSystemDirectoryW
lstrcmpiA
lstrcmpA
DeviceIoControl
CreateMutexW
WaitForSingleObject
GetCPInfo
ReleaseMutex
GetTickCount
GetMonitorInfoW
GetForegroundWindow
SendMessageW
PostMessageW
WindowFromPoint
GetDesktopWindow
WaitForInputIdle
UnregisterClassA
DefWindowProcW
CallWindowProcW
UnregisterClassW
RegisterClassExW
GetClassInfoExW
CreateWindowExW
GetWindowLongW
SetWindowLongW
LoadCursorW
GetMessageW
TranslateMessage
DispatchMessageW
PeekMessageW
DestroyWindow
CharNextW
InvalidateRect
wsprintfW
SetTimer
KillTimer
GetDC
ReleaseDC
IsWindow
SetRect
OffsetRect
PtInRect
CopyRect
SetCursor
DrawFocusRect
BeginPaint
EndPaint
IsRectEmpty
PostQuitMessage
ShowWindow
MoveWindow
SetWindowPos
SetFocus
MonitorFromPoint
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
GetClientRect
GetWindowRect
MapWindowPoints
GetParent
GetWindow
GetShellWindow
SystemParametersInfoW
SetWindowRgn
IsWindowVisible
UpdateLayeredWindow
GetAncestor
GetWindowInfo
GetWindowThreadProcessId
EnumDisplaySettingsW
MonitorFromWindow
CreateRectRgn
CombineRgn
SetViewportOrgEx
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
ExtTextOutW
SetBkColor
DeleteDC
SelectObject
GetTextExtentPoint32W
GetDeviceCaps
CreateFontIndirectW
EnumFontFamiliesW
DeleteObject
CreateFontW
ChangeServiceConfigW
StartServiceW
QueryServiceStatusEx
QueryServiceStatus
QueryServiceLockStatusW
QueryServiceConfig2W
QueryServiceConfigW
OpenServiceW
OpenSCManagerW
RegSetValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
CryptAcquireContextW
CryptReleaseContext
CryptDestroyKey
CryptSetKeyParam
CryptGenRandom
CryptImportKey
CryptEncrypt
CryptDecrypt
CryptContextAddRef
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA
OpenProcessToken
GetTokenInformation
RegQueryValueExW
SetTokenInformation
AdjustTokenPrivileges
CreateWellKnownSid
GetLengthSid
LookupPrivilegeValueW
DuplicateTokenEx
LockServiceDatabase
ChangeServiceConfig2W
CloseServiceHandle
ControlService
CreateServiceW
DeleteService
UnlockServiceDatabase
SHGetSpecialFolderPathW
ShellExecuteExW
ShellExecuteW
CommandLineToArgvW
ord165
CoSetProxyBlanket
CoInitializeSecurity
CoInitializeEx
CoUninitialize
CreateStreamOnHGlobal
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoCreateGuid
CoCreateInstance
CoInitialize
SysFreeString
VariantClear
VariantInit
SysAllocString
VarUI4FromStr
wnsprintfW
PathCombineW
PathFindFileNameW
PathFileExistsW
PathRemoveFileSpecW
StrCmpW
PathRenameExtensionW
StrCmpIW
StrStrIA
StrStrIW
StrToIntExW
SHGetValueA
SHSetValueA
StrCmpNIW
StrTrimA
SHGetValueW
AssocQueryStringW
PathAppendW
InitCommonControlsEx
_TrackMouseEvent
GdipCreateSolidFill
GdipDrawImagePointRectI
GdipSetStringFormatTrimming
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipSetStringFormatFlags
GdiplusStartup
GdiplusShutdown
GdipAlloc
GdipFree
GdipCloneImage
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFileICM
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImageRectRect
GdipDrawImageRectRectI
GdipCloneBrush
GdipDeleteBrush
GdipCreateBitmapFromFile
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorMatrix
GdipSetTextRenderingHint
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipCreateFont
GdipDeleteFont
GdipDrawString
GdipDeleteStringFormat
GdipCreateStringFormat
GdipMeasureString
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
GetModuleFileNameExW
MakeSureDirectoryPathExists
CryptBinaryToStringA
CryptBinaryToStringW
CryptStringToBinaryW
CryptStringToBinaryA
CertGetNameStringW
WTHelperProvDataFromStateData
WinVerifyTrust
GetAdaptersInfo
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ