2024-03-07_9f03e1f58500c2e0c90b422baa8e8425_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-07_9f03e1f58500c2e0c90b422baa8e8425_magniber
Size

8.6MB
MD5

9f03e1f58500c2e0c90b422baa8e8425
SHA1

69cd3eb037d824040cdd70d79152d8f6ddf7fbd0
SHA256

f8bb0155dd97b1d0e2435f4f139091a49dedf3f16a574f97169f5319f109bc15
SHA512

1d09530cf6883416083e2fea029923c389fa9cfde478d6168dc2b5447aceaf561ee02b4fb1818cb230ef264d34d088ede8cd01c0bf98f29e8e6791f2d1b9c9d6
SSDEEP

196608:A9jSlPQtNIoDgDrTUBA/pPoPY5FCwjXRoj1DyJcQeaMHPJn4CVWAd4l:WT2bRLJ7svB4/AE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-07_9f03e1f58500c2e0c90b422baa8e8425_magniber

Files

2024-03-07_9f03e1f58500c2e0c90b422baa8e8425_magniber
.exe windows:5 windows x86 arch:x86

db3095fa083f38db8c2caa69fb27a027

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegDeleteValueA
RegOpenKeyA
RegSetValueExA

gdi32

DeleteObject
SetTextColor
SetBkMode
CreateFontIndirectA
CreateDIBSection
GetTextExtentPoint32W
TextOutW
IntersectClipRect
CreateFontA
GetTextMetricsA
GetDeviceCaps
GetObjectA
CreateCompatibleDC
SelectObject
GetStockObject
DeleteDC

kernel32

WideCharToMultiByte
GetCurrentProcessId
CloseHandle
GetCurrentThreadId
LoadLibraryA
GetProcAddress
GetCurrentProcess
SetUnhandledExceptionFilter
FreeLibrary
CreateFileA
DeleteFileA
FindNextFileA
FindClose
LeaveCriticalSection
EnterCriticalSection
GetTickCount
FileTimeToSystemTime
GetFileTime
GetSystemDirectoryA
MulDiv
InterlockedDecrement
GetModuleFileNameA
GetModuleHandleA
Sleep
MapViewOfFile
CreateFileMappingA
SetThreadPriority
GetCurrentThread
OutputDebugStringA
GlobalFree
GlobalUnlock
MultiByteToWideChar
GlobalLock
GlobalAlloc
GetVersionExA
GetCommandLineA
CreateMutexW
SetErrorMode
IsBadWritePtr
VirtualQuery
QueryPerformanceFrequency
QueryPerformanceCounter
RemoveDirectoryA
InitializeCriticalSection
DeleteCriticalSection
VirtualProtect
InterlockedIncrement
GetFileSize
InterlockedExchange
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoA
RtlUnwind
RaiseException
GetSystemTimeAsFileTime
GetModuleHandleW
ExitProcess
GetLocalTime
ExitThread
ResumeThread
CreateThread
HeapFree
GetDriveTypeA
GetFullPathNameA
HeapReAlloc
HeapAlloc
LCMapStringA
LCMapStringW
GetCPInfo
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
LockResource
GetStdHandle
GetFileType
WriteFile
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
HeapSize
SetFilePointer
ReadFile
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
GetACP
GetOEMCP
IsValidCodePage
FlushFileBuffers
VirtualAlloc
GetCurrentDirectoryA
SetCurrentDirectoryA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
SetStdHandle
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringA
CompareStringW
SetEnvironmentVariableA
CreateFileW
SetEndOfFile
GetProcessHeap
GetLastError
FindFirstFileA
GetThreadPriority
CreateDirectoryA

oleaut32

VariantClear

shell32

ShellExecuteA

user32

HideCaret
LoadCursorA
DestroyCursor
DestroyWindow
SetWindowLongA
MessageBoxW
ShowWindow
ChangeDisplaySettingsA
EnumWindows
GetWindowRect
IsWindowVisible
IsIconic
GetWindowPlacement
SystemParametersInfoA
ReleaseCapture
MessageBoxA
DefWindowProcW
EndPaint
BeginPaint
DefWindowProcA
GetWindowLongA
DialogBoxIndirectParamA
EndDialog
GetDlgItem
GetWindowTextA
SetWindowTextA
PostMessageA
DestroyCaret
SetForegroundWindow
WindowFromPoint
SetCapture
SetTimer
GetActiveWindow
CreateWindowExW
CreateWindowExA
AdjustWindowRect
ScreenToClient
EnumDisplaySettingsA
SetCursor
DispatchMessageA
TranslateMessage
PeekMessageA
SetFocus
CreateCursor
RegisterClassW
RegisterClassA
RegisterClipboardFormatW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetClipboardData
GetSysColorBrush
GetMessageA
GetWindowInfo
ClientToScreen
AdjustWindowRectEx
MoveWindow
CreateCaret
ShowCaret
SetCaretPos
FillRect
DrawTextExW
GetDC
ReleaseDC
OffsetRect
GetClientRect
GetCursorPos
SendMessageA
LoadIconA
GetSystemMetrics

winmm

PlaySound
mixerSetControlDetails
mixerOpen
mixerGetDevCapsA
mixerGetLineInfoA
mixerGetLineControlsA
mixerGetControlDetailsA
mixerClose
timeBeginPeriod
timeEndPeriod
timeGetTime

wsock32

__WSAFDIsSet
WSACleanup
closesocket
send
WSAGetLastError
WSAStartup
socket
connect
htons
gethostbyname
inet_addr
ioctlsocket
select

ws2_32

recv

ole32

CoInitialize

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 400KB - Virtual size: 400KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text1
Size: 704KB - Virtual size: 704KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc1
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.pdata
Size: 4.2MB - Virtual size: 4.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Geddon
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

db3095fa083f38db8c2caa69fb27a027

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

gdi32

kernel32

oleaut32

shell32

user32

winmm

wsock32

ws2_32

ole32

Sections

.text Size: 2.5MB - Virtual size: 2.5MB

.rdata Size: 268KB - Virtual size: 268KB

.data Size: 400KB - Virtual size: 400KB

.reloc Size: 84KB - Virtual size: 84KB

.text1 Size: 704KB - Virtual size: 704KB

.adata Size: 64KB - Virtual size: 64KB

.data1 Size: 128KB - Virtual size: 128KB

.reloc1 Size: 64KB - Virtual size: 64KB

.pdata Size: 4.2MB - Virtual size: 4.2MB

.rsrc Size: 148KB - Virtual size: 148KB

.Geddon Size: 8KB - Virtual size: 8KB

.text
Size: 2.5MB - Virtual size: 2.5MB

.rdata
Size: 268KB - Virtual size: 268KB

.data
Size: 400KB - Virtual size: 400KB

.reloc
Size: 84KB - Virtual size: 84KB

.text1
Size: 704KB - Virtual size: 704KB

.adata
Size: 64KB - Virtual size: 64KB

.data1
Size: 128KB - Virtual size: 128KB

.reloc1
Size: 64KB - Virtual size: 64KB

.pdata
Size: 4.2MB - Virtual size: 4.2MB

.rsrc
Size: 148KB - Virtual size: 148KB

.Geddon
Size: 8KB - Virtual size: 8KB