2024-03-08_03e467c80608b811e1bf1c85b638e5d3_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-08_03e467c80608b811e1bf1c85b638e5d3_magniber
Size

5.4MB
MD5

03e467c80608b811e1bf1c85b638e5d3
SHA1

b9ca9b4a383041b7df4ec72805474ffa070918a8
SHA256

15507d3be5a6638ee0f5f31666e89c2a1c3240372d1400173ed7057479a82885
SHA512

20a1aa172e0de6eca507190c934bd1b2af4ea56c02a5b7cb79166a48937f1ca7835bcf470bf383684e0a20404753a8b09d64621d87707162286af2f1404c589f
SSDEEP

98304:AA4yEDtG1IUfcbUY6krwPBcdnls/9zAftKUdRo8G4NIZK:5R1IRbUY6qwYn8zAVBRrG4NIK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-08_03e467c80608b811e1bf1c85b638e5d3_magniber

Files

2024-03-08_03e467c80608b811e1bf1c85b638e5d3_magniber
.exe windows:5 windows x86 arch:x86

6ac27e40c9fd3fd87f4875749363c12d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Projects\PersonalFeed\OChang\SOFT\Feed\Release\Feed.pdb

Imports

kernel32

GetCurrentDirectoryA
RtlUnwind
RaiseException
IsDebuggerPresent
DebugBreak
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapAlloc
HeapFree
GetCommandLineA
GetStartupInfoA
HeapReAlloc
ExitThread
CreateThread
ExitProcess
HeapSize
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetProcessHeap
GetACP
IsValidCodePage
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
SetErrorMode
FatalAppExitA
VirtualFree
HeapCreate
HeapDestroy
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetDriveTypeA
SetConsoleCtrlHandler
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoW
SetCurrentDirectoryA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
GetSystemDirectoryW
LoadLibraryW
GetOEMCP
GetCPInfo
GlobalFlags
GetAtomNameA
GetModuleHandleW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
LoadLibraryExA
InterlockedExchange
lstrcmpA
GetFileSizeEx
SetFileAttributesA
LocalFileTimeToFileTime
GetFileAttributesExA
GetDiskFreeSpaceA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
SystemTimeToFileTime
CreateEventA
SuspendThread
SetEvent
ResumeThread
SetThreadPriority
GetModuleFileNameW
CreateFileA
GetShortPathNameA
GetFullPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
CloseHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
lstrcmpiA
GetThreadLocale
GetStringTypeExA
DeleteFileA
MoveFileA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
FindClose
GetCurrentProcessId
FreeResource
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
FreeLibrary
CompareStringA
LoadLibraryA
lstrcmpW
GetProcAddress
GetVersionExA
GlobalFree
CopyFileA
GlobalSize
FormatMessageA
LocalFree
lstrlenW
GetLastError
SetLastError
lstrcatA
GetModuleFileNameA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
lstrcpyA
OutputDebugStringA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
MulDiv
WaitForSingleObject
GetTickCount
GetLocalTime
CreateDirectoryA
GlobalAlloc
GlobalLock
GlobalUnlock
Sleep
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
InterlockedIncrement
GetStdHandle
InterlockedDecrement

user32

GetDialogBaseUnits
UnregisterClassA
UnionRect
DestroyIcon
CharNextA
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
PostThreadMessageA
GetDCEx
LockWindowUpdate
TabbedTextOutA
IsZoomed
UnpackDDElParam
ReuseDDElParam
GetMenuBarInfo
LoadAcceleratorsA
InsertMenuItemA
SetRectEmpty
BringWindowToTop
TranslateAcceleratorA
DestroyMenu
GetMenuItemInfoA
InflateRect
SetCursor
SetWindowRgn
DrawIcon
IsRectEmpty
GetMessageA
TranslateMessage
ValidateRect
MapVirtualKeyA
GetKeyNameTextA
ReleaseDC
CharUpperA
GetWindowThreadProcessId
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
GetCursorPos
WindowFromPoint
ClientToScreen
SetRect
ScrollWindowEx
IsWindowEnabled
MoveWindow
SetWindowTextA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
SetParent
GetClassNameA
SetPropA
GetPropA
RemovePropA
IsWindow
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
ScrollWindow
TrackPopupMenuEx
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
IsWindowVisible
PostMessageA
MessageBoxA
GetClassInfoExA
GetClassInfoA
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
PtInRect
GetDlgCtrlID
CallWindowProcA
GetMenu
wsprintfA
EnableWindow
SendMessageA
SetFocus
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetWindow
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
CheckMenuItem
GetMenuState
GetMenuStringA
GetMenuItemID
GetSystemMenu
DeleteMenu
GetSysColorBrush
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
InsertMenuA
GetMenuItemCount
RemoveMenu
PostQuitMessage
EndPaint
BeginPaint
GetWindowDC
GrayStringA
GetClassLongA
DrawTextExA
GetDlgItem
LoadIconA
RegisterClipboardFormatA
CloseClipboard
GetClipboardData
IsClipboardFormatAvailable
OpenClipboard
SetClipboardData
EmptyClipboard
GetSubMenu
LoadMenuA
GetFocus
GetSystemMetrics
SetWindowLongA
SetTimer
KillTimer
GetSysColor
CopyRect
DrawStateA
GetDC
InvalidateRect
GetWindowLongA
GetTopWindow
GetParent
ReleaseCapture
GetClientRect
SetCapture
FillRect
DrawTextA
CreatePopupMenu
AppendMenuA
EnableMenuItem
DefWindowProcA
CreateWindowExA
SetForegroundWindow
ShowWindow
IsIconic
FindWindowA
UpdateWindow
DestroyWindow
LoadCursorA
RegisterClassA
IsDialogMessageA

gdi32

OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ArcTo
PolyDraw
PolylineTo
PolyBezierTo
ExtSelectClipRgn
DeleteDC
CreateDIBPatternBrushPt
CreatePatternBrush
SelectPalette
SetWindowOrgEx
GetObjectType
EnumMetaFile
PlayMetaFile
ExtCreatePen
CreateHatchBrush
SetRectRgn
CombineRgn
GetMapMode
GetCharWidthA
CreateFontA
StretchDIBits
GetTextColor
GetRgnBox
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutA
RectVisible
PtVisible
StartDocA
GetPixel
GetWindowExtEx
GetViewportExtEx
SelectClipPath
CreateRectRgn
GetClipRgn
SelectClipRgn
DeleteObject
SetColorAdjustment
PlayMetaFileRecord
GetDeviceCaps
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
MoveToEx
LineTo
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SetMapMode
ModifyWorldTransform
SetWorldTransform
SetGraphicsMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
GetTextMetricsA
CreateCompatibleBitmap
ExtTextOutA
BitBlt
CreateCompatibleDC
Ellipse
LPtoDP
DPtoLP
CreateEllipticRgn
PatBlt
GetBkColor
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
CreateBitmap
CreateDCA
CopyMetaFileA
CreateRectRgnIndirect
GetTextExtentPoint32A
Rectangle
SelectObject
GetObjectA
CreateFontIndirectA
CreateSolidBrush
CreatePen
GetStockObject
SetArcDirection

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegEnumKeyA
RegSetValueA
RegCreateKeyA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegCloseKey
RegDeleteKeyA
RegOpenKeyExA
GetFileSecurityA
SetFileSecurityA
RegOpenKeyA
RegQueryValueExA

shell32

SHGetFileInfoA
DragFinish
DragQueryFileA
ExtractIconA
ShellExecuteA

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathIsUNCA
PathFindFileNameA
PathFindExtensionA
PathRemoveExtensionA
PathStripToRootA
PathRemoveFileSpecW

oledlg

ord8

ole32

CoTaskMemAlloc
ReleaseStgMedium
CreateBindCtx
CoTreatAsClass
StringFromCLSID
ReadClassStg
OleDuplicateData
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CoTaskMemFree
CoCreateInstance
OleRun
CLSIDFromProgID
CLSIDFromString
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
StringFromGUID2
CoDisconnectObject
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoRegisterClassObject
CoRevokeClassObject
OleSetClipboard
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CoUninitialize
CoInitializeEx
CreateStreamOnHGlobal
ReadFmtUserTypeStg

oleaut32

SysFreeString
SysAllocStringByteLen
SysStringByteLen
VariantInit
VariantChangeType
VariantCopy
SysAllocString
VariantTimeToSystemTime
CreateErrorInfo
SystemTimeToVariantTime
VarUdateFromDate
VarDateFromStr
SysStringLen
SysAllocStringLen
RegisterTypeLi
LoadTypeLi
LoadRegTypeLi
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
SafeArrayRedim
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCopy
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SysReAllocStringLen
VarBstrFromCy
VarBstrFromDec
VarDecFromStr
VarCyFromStr
VarBstrFromDate
OleCreateFontIndirect
GetErrorInfo
SetErrorInfo
VariantClear

ws2_32

sendto
send
shutdown
closesocket
socket
recv
connect
htonl
htons
bind
WSACleanup
WSAStartup
recvfrom
select
WSAGetLastError
inet_addr

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 437KB - Virtual size: 436KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didat
Size: 1024B - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ac27e40c9fd3fd87f4875749363c12d

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 437KB - Virtual size: 436KB

.data Size: 19KB - Virtual size: 35KB

.idata Size: 17KB - Virtual size: 17KB

.didat Size: 1024B - Virtual size: 852B

.rsrc Size: 3.3MB - Virtual size: 3.3MB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 437KB - Virtual size: 436KB

.data
Size: 19KB - Virtual size: 35KB

.idata
Size: 17KB - Virtual size: 17KB

.didat
Size: 1024B - Virtual size: 852B

.rsrc
Size: 3.3MB - Virtual size: 3.3MB