10319bfdfcf1ada18cb95aeb0d90d142fb023dbdd492ff15c87591678ff3f901 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-05_4ffde214718a13f43f3c3f6145affb31_magniber_revil
Size

5.7MB
Sample

240405-n3cg1abg26
MD5

4ffde214718a13f43f3c3f6145affb31
SHA1

93768bc2b0a7d3ceaf59adcaf67bbb7becd31068
SHA256

10319bfdfcf1ada18cb95aeb0d90d142fb023dbdd492ff15c87591678ff3f901
SHA512

2858ba717a0d4a0313754650286a3a8fd2acd66bff3f878d2309da1a638b0dbaefc8582aeda92e111dce8321be050e634a0935571b8cd32ca5a29ccc22bd10c0
SSDEEP

98304:2pHLE2ZzvfYXkpj+LGXpZevNpuEOZu3qOFs9f6Mby2a905tq7NJ3vY9zzJ:upz+LrvbOZu3pFs1y2a9YafY9zV

Score

9^/10

evasion

Malware Config

Targets

- Target
  
  2024-04-05_4ffde214718a13f43f3c3f6145affb31_magniber_revil
- Size
  
  5.7MB
- MD5
  
  4ffde214718a13f43f3c3f6145affb31
- SHA1
  
  93768bc2b0a7d3ceaf59adcaf67bbb7becd31068
- SHA256
  
  10319bfdfcf1ada18cb95aeb0d90d142fb023dbdd492ff15c87591678ff3f901
- SHA512
  
  2858ba717a0d4a0313754650286a3a8fd2acd66bff3f878d2309da1a638b0dbaefc8582aeda92e111dce8321be050e634a0935571b8cd32ca5a29ccc22bd10c0
- SSDEEP
  
  98304:2pHLE2ZzvfYXkpj+LGXpZevNpuEOZu3qOFs9f6Mby2a905tq7NJ3vY9zzJ:upz+LrvbOZu3pFs1y2a9YafY9zV
Score

9^/10

evasion
- Looks for VirtualBox Guest Additions in registry
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2