General

  • Target

    2024-04-07_e566223cb3b5751b0efb0d320f01036f_magniber_revil

  • Size

    4.3MB

  • Sample

    240407-wfvztsae94

  • MD5

    e566223cb3b5751b0efb0d320f01036f

  • SHA1

    57628145b864b64e3403877613a84e13a8fb9785

  • SHA256

    aac3b7d99fda6f1f5bb0c48cb147fcda1694c67d0955db3e0c855f8245c40e85

  • SHA512

    8d183e0bfbac7b9fe1e8e389f284bb27d0f24f32015673ef1b0b90365c3002ae8f73df8c364f22c82ede0ad934b52aee9e9b8bf02367b717a7c4c6340c3452eb

  • SSDEEP

    49152:Z5PigeXnpHEM1zKhYOPCP1/j2T37gZKUxT2cHF6c9OtutbksDM2jh3BqS7YtGL/3:ZUpH71+hDPS/j4gDx2t6MMQS7kGLws

Malware Config

Targets

    • Target

      2024-04-07_e566223cb3b5751b0efb0d320f01036f_magniber_revil

    • Size

      4.3MB

    • MD5

      e566223cb3b5751b0efb0d320f01036f

    • SHA1

      57628145b864b64e3403877613a84e13a8fb9785

    • SHA256

      aac3b7d99fda6f1f5bb0c48cb147fcda1694c67d0955db3e0c855f8245c40e85

    • SHA512

      8d183e0bfbac7b9fe1e8e389f284bb27d0f24f32015673ef1b0b90365c3002ae8f73df8c364f22c82ede0ad934b52aee9e9b8bf02367b717a7c4c6340c3452eb

    • SSDEEP

      49152:Z5PigeXnpHEM1zKhYOPCP1/j2T37gZKUxT2cHF6c9OtutbksDM2jh3BqS7YtGL/3:ZUpH71+hDPS/j4gDx2t6MMQS7kGLws

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks