General

  • Target

    2024-04-03_06e996bd70d8b3120bab9c8d6ec29b24_magniber_revil_zxxz

  • Size

    24.3MB

  • Sample

    240403-ygwnvsag9t

  • MD5

    06e996bd70d8b3120bab9c8d6ec29b24

  • SHA1

    3b5c427ccbfe3862e1b77591a6a021ff09dcb2e0

  • SHA256

    d1d6a1a2567bf4c8e4933ec0879143fe4551704b32d4c933f890074da3985244

  • SHA512

    bbf08c9f8c1f9750ba951749b78dfd7720addaff20c72f67c0fc31102fd05887d6ca34750c485f24b0ff4b67b0147b6492e62b41f3c3ab5b04d2a0368248db46

  • SSDEEP

    196608:yP0Hj6JigboXZDwqY8a/qVwsEXX1KOgCu3JK1Op1H2SAmGcWqnlv018BiD4bU:yPboGX8a/jWWu3cq2D/cWcls1Gi2U

Score
7/10

Malware Config

Targets

    • Target

      2024-04-03_06e996bd70d8b3120bab9c8d6ec29b24_magniber_revil_zxxz

    • Size

      24.3MB

    • MD5

      06e996bd70d8b3120bab9c8d6ec29b24

    • SHA1

      3b5c427ccbfe3862e1b77591a6a021ff09dcb2e0

    • SHA256

      d1d6a1a2567bf4c8e4933ec0879143fe4551704b32d4c933f890074da3985244

    • SHA512

      bbf08c9f8c1f9750ba951749b78dfd7720addaff20c72f67c0fc31102fd05887d6ca34750c485f24b0ff4b67b0147b6492e62b41f3c3ab5b04d2a0368248db46

    • SSDEEP

      196608:yP0Hj6JigboXZDwqY8a/qVwsEXX1KOgCu3JK1Op1H2SAmGcWqnlv018BiD4bU:yPboGX8a/jWWu3cq2D/cWcls1Gi2U

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks