dce1d79890e04837a58274f8ca42d7ecca909f0320ccb912e89b3d063884ba0f | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-03-11...il.exe

windows7-x64

7

2024-03-11...il.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-11_1e5a554962f14f28052e942e5b8b514a_magniber_revil
Size

7.1MB
Sample

240311-h77k2seg76
MD5

1e5a554962f14f28052e942e5b8b514a
SHA1

452b65e05c239fd2d1a61275e03651c75753f982
SHA256

dce1d79890e04837a58274f8ca42d7ecca909f0320ccb912e89b3d063884ba0f
SHA512

e5843ba52406e4a215e6362361b230c3d70d3ae3c4c5444f96019433bde83d26c0d2c6598f3f8bc7a7d1ba8a2bb3f71e12dc52ba1d8d67b123ea3ce299944503
SSDEEP

196608:uHMOjEO++CoFpJ+9PbxXV0YJnD9H4xvdVQBWG:uskCzXVVpovoB

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-03-11_1e5a554962f14f28052e942e5b8b514a_magniber_revil.exe

Resource

win7-20240221-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-03-11_1e5a554962f14f28052e942e5b8b514a_magniber_revil.exe

Resource

win10v2004-20240226-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-03-11_1e5a554962f14f28052e942e5b8b514a_magniber_revil
- Size
  
  7.1MB
- MD5
  
  1e5a554962f14f28052e942e5b8b514a
- SHA1
  
  452b65e05c239fd2d1a61275e03651c75753f982
- SHA256
  
  dce1d79890e04837a58274f8ca42d7ecca909f0320ccb912e89b3d063884ba0f
- SHA512
  
  e5843ba52406e4a215e6362361b230c3d70d3ae3c4c5444f96019433bde83d26c0d2c6598f3f8bc7a7d1ba8a2bb3f71e12dc52ba1d8d67b123ea3ce299944503
- SSDEEP
  
  196608:uHMOjEO++CoFpJ+9PbxXV0YJnD9H4xvdVQBWG:uskCzXVVpovoB
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy