2024-02-23_4ade94f7163290e0c9bf059e07cf8bae_magniber_revil | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-23_4ade94f7163290e0c9bf059e07cf8bae_magniber_revil
Size

3.9MB
MD5

4ade94f7163290e0c9bf059e07cf8bae
SHA1

b25c688edb4d2ed2da238fe2a194f83902e572a6
SHA256

42ce2954448aeeb75401a3bbb293a08db35922bf989238e46e7111533f3e9968
SHA512

52ed057122c66ae91aca84d3731c007f27720350527ce579ae9e40991a6790a9dc27fb90cd90bf8e5583616e5fd80ee53876604d4c56719323b3f106bc27d795
SSDEEP

49152:YNuHufKpHxUll250VZ/HmLKTVrbGlGF6ApG6JX1fHqT5H5LMzLJctPl9N0Lw:YNuHVHClJxGLsZGlGFHqT5HAJc3B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-23_4ade94f7163290e0c9bf059e07cf8bae_magniber_revil

Files

2024-02-23_4ade94f7163290e0c9bf059e07cf8bae_magniber_revil
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 926KB - Virtual size: 925KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 217KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 246KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 145KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ