2024-03-19_cfb947bbcd88086fcb03531331c16189_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-19_cfb947bbcd88086fcb03531331c16189_magniber
Size

1.2MB
MD5

cfb947bbcd88086fcb03531331c16189
SHA1

8f545d2dd7883a62978eeb04bf2f628c0515916b
SHA256

ce74bbd7624c0dd4dabe9ff13f4cec5f633a4c9682cff6ec56e4b4d7d9c52072
SHA512

25f2ec8df183235d2c90a3c1f735e842cea36c23607eb5ac1ff30d206e3f851e413a77709211c289e449006fe5825274b947727560bb698ace6b1436b5a3519c
SSDEEP

24576:kQbuQ82niWE9EIn1KEernj1Ff+VU6wjLZaXWzExzxOuZTVVvPWRC:kQB8TqIn18nT+VU6wjLZaXWzgxO6PvP/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-19_cfb947bbcd88086fcb03531331c16189_magniber

Files

2024-03-19_cfb947bbcd88086fcb03531331c16189_magniber
.exe windows:5 windows x86 arch:x86

a8694f9e2dd9584d23e57899958ecca9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\DXBall2\DXBall2.pdb

Imports

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

gdiplus

GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdiplusStartup
GdiplusShutdown
GdipAlloc
GdipFree
GdipCloneImage
GdipDisposeImage
GdipSaveImageToFile
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromFile
GdipBitmapUnlockBits
GdipCreateBitmapFromFileICM

steam_api

SteamAPI_Init
SteamAPI_Shutdown
SteamAPI_RunCallbacks
SteamAPI_RegisterCallback
SteamAPI_UnregisterCallback
SteamAPI_RegisterCallResult
SteamAPI_UnregisterCallResult
SteamAPI_GetHSteamPipe
SteamAPI_GetHSteamUser
SteamInternal_ContextInit
SteamAPI_SetMiniDumpComment
SteamInternal_CreateInterface
SteamAPI_WriteMiniDump

shell32

SHGetKnownFolderPath

winmm

timeGetTime

audiow32

ord137
ord136
ord135
ord134
ord133
ord132
ord128
ord127
ord126
ord125
ord124
ord123
ord139
ord121
ord119
ord118
ord117
ord116
ord115
ord110
ord109
ord148
ord107
ord106
ord103
ord102
ord122
ord142
ord143
ord144
ord145

kernel32

FindFirstFileExA
ReadConsoleW
DecodePointer
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetFileType
GetStringTypeW
GetConsoleMode
GetConsoleCP
GetCurrentThread
HeapAlloc
HeapFree
GetACP
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleHandleExW
ExitProcess
ReadFile
SetLastError
EncodePointer
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
InterlockedFlushSList
InterlockedPushEntrySList
RtlUnwind
LocalFree
FormatMessageA
WideCharToMultiByte
MultiByteToWideChar
AreFileApisANSI
LCMapStringW
MoveFileExW
CopyFileW
CreateDirectoryExW
GetWindowsDirectoryW
DeviceIoControl
GetCurrentProcess
RaiseException
SetUnhandledExceptionFilter
FindFirstFileExW
CloseHandle
CreateSemaphoreA
OpenSemaphoreA
OutputDebugStringA
SetPriorityClass
GetModuleFileNameW
GetVersionExA
GetLastError
CreateDirectoryA
FindClose
FindFirstFileA
FindNextFileA
QueryPerformanceCounter
QueryPerformanceFrequency
SetFileTime
SetFilePointerEx
SetFileAttributesW
SetEndOfFile
RemoveDirectoryW
GetFullPathNameW
GetFileTime
GetFileInformationByHandle
GetFileAttributesExW
GetFileAttributesW
GetDiskFreeSpaceExW
FindNextFileW
FindFirstFileW
DeleteFileW
CreateFileW
CreateDirectoryW
GetCurrentDirectoryW
SetCurrentDirectoryW
GetEnvironmentVariableW
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
GetStartupInfoW
IsDebuggerPresent
GetProcAddress
GetModuleHandleW
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeSListHead
IsProcessorFeaturePresent
IsValidCodePage
GetOEMCP
GetCPInfo
GetTimeZoneInformation
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
GetProcessHeap
SetConsoleCtrlHandler
OutputDebugStringW
CreateThread
SetStdHandle
FlushFileBuffers
WriteConsoleW
HeapSize
HeapReAlloc
FormatMessageW
GetTickCount
Sleep
TerminateProcess
UnhandledExceptionFilter

user32

IsZoomed
OffsetRect
ClientToScreen
ClipCursor
SetCursorPos
ShowCursor
MessageBoxA
EndPaint
BeginPaint
PostQuitMessage
DefWindowProcA
PostMessageA
PeekMessageA
DispatchMessageA
TranslateMessage
GetMessageA
FillRect
ScrollDC
ReleaseDC
GetDC
LoadIconA
LoadCursorA
SetWindowLongA
CopyRect
AdjustWindowRectEx
GetWindowRect
GetClientRect
GetSystemMetrics
SetFocus
MoveWindow
ShowWindow
DestroyWindow
CreateWindowExA
RegisterClassExA

gdi32

SetBrushOrgEx
SetDIBColorTable
CreateDIBSection
SetStretchBltMode
StretchBlt
SetDIBitsToDevice
SelectPalette
SelectObject
RealizePalette
DeleteObject
DeleteDC
CreateSolidBrush
CreateCompatibleDC
BitBlt
GdiFlush
CreatePalette

advapi32

RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegCloseKey

ole32

CoTaskMemFree

Sections

.text
Size: 873KB - Virtual size: 872KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a8694f9e2dd9584d23e57899958ecca9

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

version

gdiplus

steam_api

shell32

winmm

audiow32

kernel32

user32

gdi32

advapi32

ole32

Sections

.text Size: 873KB - Virtual size: 872KB

.rdata Size: 184KB - Virtual size: 183KB

.data Size: 8KB - Virtual size: 2.2MB

.gfids Size: 2KB - Virtual size: 2KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 156KB - Virtual size: 155KB

.reloc Size: 44KB - Virtual size: 43KB

.text
Size: 873KB - Virtual size: 872KB

.rdata
Size: 184KB - Virtual size: 183KB

.data
Size: 8KB - Virtual size: 2.2MB

.gfids
Size: 2KB - Virtual size: 2KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 156KB - Virtual size: 155KB

.reloc
Size: 44KB - Virtual size: 43KB