Overview

overview

10

Static

static

1

2024-02-20...er.exe

windows7-x64

10

2024-02-20...er.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-20_533dde317a8bfd625e1ecff97179bc4a_magniber

  • Size

    21.0MB

  • Sample

    240220-swlvbaae81

  • MD5

    533dde317a8bfd625e1ecff97179bc4a

  • SHA1

    4e79d5524feeb5cd2b02827cb21ab9dabc5859d6

  • SHA256

    04f729e2805d7b3827bc9d05cb145ee00bcf4c986f0ff384088c2523ff9292f2

  • SHA512

    e074771b131753236994e51e116e828f9a663f97d28aee673e939168a38f34ae47d31f27a25ce3745363d2a360eeebe18a2c8d8a41c9d7a3193197e0308ddc6d

  • SSDEEP

    393216:7xWylviEtVEjf55fz8BnALyBhXUiXnkouI4BbRTfYZ13GPWqc7CKxDZOviK:AyDWABnALyBhEi0Q4BRLYZtGPveDZOvV

Score
10/10
banloaddownloaderdropperevasiontrojan

Malware Config

Targets

    • Target

      2024-02-20_533dde317a8bfd625e1ecff97179bc4a_magniber

    • Size

      21.0MB

    • MD5

      533dde317a8bfd625e1ecff97179bc4a

    • SHA1

      4e79d5524feeb5cd2b02827cb21ab9dabc5859d6

    • SHA256

      04f729e2805d7b3827bc9d05cb145ee00bcf4c986f0ff384088c2523ff9292f2

    • SHA512

      e074771b131753236994e51e116e828f9a663f97d28aee673e939168a38f34ae47d31f27a25ce3745363d2a360eeebe18a2c8d8a41c9d7a3193197e0308ddc6d

    • SSDEEP

      393216:7xWylviEtVEjf55fz8BnALyBhXUiXnkouI4BbRTfYZ13GPWqc7CKxDZOviK:AyDWABnALyBhEi0Q4BRLYZtGPveDZOvV

    Score
    10/10
    banloaddownloaderdropperevasiontrojan

    • Banload

      Banload variants download malicious files, then install and execute the files.

      trojandropperdownloaderbanload

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks