General
-
Target
2024-04-10_70c128207b54de0b95d704c2e415a1c3_floxif_magniber
-
Size
4.4MB
-
Sample
240410-1fvraafb2v
-
MD5
70c128207b54de0b95d704c2e415a1c3
-
SHA1
15e2099e700c1e83683da486c475cd32d4c97434
-
SHA256
570347bb7de5d391c57abca86d6092944e7e4b2b17a1645bdbb8c3d143096d98
-
SHA512
61913ef7a1661ef3d0b54d43f03bf196b002518f2c4f6b8f7237c551ee68e604155c2e805e15845d4732becb2fa2e450df84303481363f77cca8d2fa707b7bfc
-
SSDEEP
49152:KCBtvSXOhEc2Mgy+uTEGQp8EaQZaFChW7ZaAXN1y61/jQaOM7ZHfrMuEkvqy5wWM:KCDSXOhEc2MgRHTp+fXJjxLSytuws
Behavioral task
behavioral1
Sample
2024-04-10_70c128207b54de0b95d704c2e415a1c3_floxif_magniber.exe
Resource
win7-20240221-en
Malware Config
Extracted
risepro
37.120.237.196:50500
Targets
-
-
Target
2024-04-10_70c128207b54de0b95d704c2e415a1c3_floxif_magniber
-
Size
4.4MB
-
MD5
70c128207b54de0b95d704c2e415a1c3
-
SHA1
15e2099e700c1e83683da486c475cd32d4c97434
-
SHA256
570347bb7de5d391c57abca86d6092944e7e4b2b17a1645bdbb8c3d143096d98
-
SHA512
61913ef7a1661ef3d0b54d43f03bf196b002518f2c4f6b8f7237c551ee68e604155c2e805e15845d4732becb2fa2e450df84303481363f77cca8d2fa707b7bfc
-
SSDEEP
49152:KCBtvSXOhEc2Mgy+uTEGQp8EaQZaFChW7ZaAXN1y61/jQaOM7ZHfrMuEkvqy5wWM:KCDSXOhEc2MgRHTp+fXJjxLSytuws
-
UPX dump on OEP (original entry point)
-
Dave packer
Detects executable using a packer named 'Dave' by the community, based on a string at the end.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-