E:\lzy_work_dir\adfilter\trunk\Release\FilterMain.pdb
Static task
static1
2 signatures
Behavioral task
behavioral1
Sample
2024-04-11_11b334cef1995f875631583d57a56fae_magniber_silence.exe
Resource
win7-20240220-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-04-11_11b334cef1995f875631583d57a56fae_magniber_silence.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
2024-04-11_11b334cef1995f875631583d57a56fae_magniber_silence
-
Size
3.1MB
-
MD5
11b334cef1995f875631583d57a56fae
-
SHA1
29c26d78f4edcb490f4bfa73df45f6791af0dee8
-
SHA256
d68efe26769b3fa434bfccbcac6ec7e2f88c7e4f45b3f49b28ec1c3507e6b7f7
-
SHA512
c21aed795a5d89b4594fa3d2e57d9c8a3a8ab71a71b756657989a03dcf84ad74f338e2a9232b51595320a508d773910b15f9a59f3e19fb814f34fb0466f5f480
-
SSDEEP
98304:YSwRUD6ilQjjJcTiHmwPekJFWY6CjiAXprHvCFqdqM4EOecIls2gxV6A:1skGHnPzJFCAZPstM4ElcIls2U6A
Score
10/10
Malware Config
Signatures
-
Detects binaries (Windows and macOS) referencing many web browsers. Observed in information stealers. 1 IoCs
resource yara_rule sample INDICATOR_SUSPICIOUS_Binary_References_Browsers -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-04-11_11b334cef1995f875631583d57a56fae_magniber_silence
Files
-
2024-04-11_11b334cef1995f875631583d57a56fae_magniber_silence.exe windows:5 windows x86 arch:x86
c9db3c7b5b27ad94bd03d589b5398e3b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
libcurl
curl_easy_setopt
curl_easy_init
curl_easy_perform
curl_easy_cleanup
curl_slist_append
curl_global_init
curl_formfree
curl_formadd
curl_easy_getinfo
curl_global_cleanup
shlwapi
SHDeleteValueA
StrFormatKBSizeA
SHSetValueA
SHGetValueW
SHGetValueA
PathFileExistsW
StrCpyW
PathFindFileNameA
PathRemoveExtensionA
PathIsUNCA
PathStripToRootA
PathFindExtensionA
PathRemoveFileSpecW
PathFileExistsA
wininet
HttpOpenRequestA
InternetCheckConnectionA
FindFirstUrlCacheEntryW
FindNextUrlCacheEntryW
FindCloseUrlCache
DeleteUrlCacheEntryW
InternetOpenA
InternetCloseHandle
InternetConnectA
InternetOpenUrlA
HttpQueryInfoA
HttpSendRequestA
InternetReadFile
kernel32
DosDateTimeToFileTime
SystemTimeToFileTime
DuplicateHandle
SetFileTime
SetFilePointer
GetFileType
GetFileSize
IsDBCSLeadByte
MulDiv
FindResourceA
SizeofResource
LoadResource
ExitProcess
LockResource
FreeResource
GetCurrentDirectoryA
SetCurrentDirectoryA
GetACP
InterlockedIncrement
GetLocalTime
GetFileSizeEx
CreateProcessA
WideCharToMultiByte
MultiByteToWideChar
GetSystemInfo
WinExec
InitializeCriticalSectionAndSpinCount
Process32Next
Process32First
CreateToolhelp32Snapshot
TerminateProcess
OpenProcess
GetComputerNameA
GetVolumeInformationA
DeviceIoControl
DeleteFileA
VerSetConditionMask
GetCommandLineA
LoadLibraryA
OpenMutexA
CreateMutexA
FreeLibrary
CreateFileA
GetTickCount
ReadFile
WriteFile
CreateThread
GetCurrentProcess
WritePrivateProfileStringA
GetPrivateProfileStringA
Sleep
GetLastError
LocalAlloc
FindNextFileW
FindFirstFileW
DeleteFileW
RemoveDirectoryW
GetModuleHandleA
FindClose
GetProcAddress
GetPrivateProfileIntA
GetModuleFileNameA
CreateEventA
SetEvent
OutputDebugStringA
LocalFree
InterlockedDecrement
OpenFileMappingA
CreateFileMappingA
UnmapViewOfFile
MapViewOfFile
CloseHandle
GetCurrentProcessId
GetCurrentThreadId
SetThreadPriority
SuspendThread
ResumeThread
GlobalGetAtomNameA
GetAtomNameA
FileTimeToSystemTime
GetThreadLocale
GlobalAddAtomA
FindFirstFileA
FlushFileBuffers
GetFullPathNameA
LockFile
SetEndOfFile
CreateDirectoryA
LoadLibraryExA
GetShortPathNameA
GetModuleHandleW
GetModuleFileNameW
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
lstrcmpiA
MoveFileA
GetStringTypeExA
GlobalFlags
EncodePointer
DecodePointer
GetSystemDirectoryW
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
GlobalFindAtomA
InterlockedExchange
GetCurrentThread
GetVersionExA
FileTimeToLocalFileTime
lstrlenW
lstrlenA
SetEnvironmentVariableA
CreateFileW
WriteConsoleW
EnumSystemLocalesW
IsValidLocale
LCMapStringW
GetTimeFormatW
GetDateFormatW
OutputDebugStringW
SetFilePointerEx
ReadConsoleW
SetConsoleCtrlHandler
FatalAppExitA
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
MoveFileExW
CreateSemaphoreW
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetTimeZoneInformation
IsValidCodePage
GetProcessHeap
GetConsoleMode
GetConsoleCP
GetStdHandle
SetStdHandle
GetModuleHandleExW
HeapQueryInformation
HeapSize
ExitThread
VirtualQuery
VirtualAlloc
HeapReAlloc
AreFileApisANSI
WaitForSingleObject
LoadLibraryW
GetVersion
GetFileAttributesW
IsProcessorFeaturePresent
IsDebuggerPresent
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
RtlUnwind
RaiseException
LocalUnlock
LocalLock
FindResourceExW
GetUserDefaultLCID
ReplaceFileA
GetDiskFreeSpaceA
VirtualProtect
SearchPathA
GetProfileIntA
GetTempFileNameA
GetTempPathA
VerifyVersionInfoA
LeaveCriticalSection
GetWindowsDirectoryA
lstrcpyA
UnlockFile
CompareStringA
GetCPInfo
GetOEMCP
EnterCriticalSection
InitializeCriticalSection
lstrcmpA
CopyFileA
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
SetErrorMode
SetFileAttributesA
LocalFileTimeToFileTime
GetFileTime
GetFileAttributesExA
SetLastError
GlobalAlloc
GlobalSize
GlobalLock
GlobalUnlock
GlobalFree
FormatMessageA
FindResourceW
GetFileAttributesA
user32
PostQuitMessage
RegisterWindowMessageA
ShowWindow
wsprintfW
IsWindow
FlashWindow
IsIconic
SetTimer
KillTimer
CreatePopupMenu
DestroyMenu
InsertMenuA
TrackPopupMenu
SetForegroundWindow
SetWindowRgn
SetWindowTextA
GetClientRect
GetWindowRect
GetCursorPos
ScreenToClient
GetWindowLongA
SetWindowLongA
FindWindowA
LoadIconA
LoadStringA
CreateWindowExW
MessageBoxA
PostMessageA
SetWindowPos
GetParent
SystemParametersInfoA
DefWindowProcA
RegisterClassExA
CreateWindowExA
ReleaseCapture
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
AppendMenuA
RemoveMenu
UnhookWindowsHookEx
IsWindowEnabled
GetWindowThreadProcessId
GetLastActivePopup
GetSysColorBrush
UnregisterClassA
PeekMessageA
IsWindowVisible
GetActiveWindow
ValidateRect
SetWindowsHookExA
CallNextHookEx
DestroyIcon
CharUpperA
GetDlgCtrlID
GetDesktopWindow
GetClassNameA
RealChildWindowFromPoint
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoA
LoadBitmapW
GetMessagePos
GetMessageTime
GetClassInfoA
IsChild
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetDlgItem
GetCapture
SetMenu
TrackPopupMenuEx
UpdateWindow
SetActiveWindow
GetForegroundWindow
RedrawWindow
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
RemovePropA
CopyRect
EqualRect
GetClassLongA
MoveWindow
LoadIconW
SetScrollInfo
GetScrollInfo
WinHelpA
SetDlgItemInt
GetDlgItemInt
SetDlgItemTextA
GetDlgItemTextA
CheckDlgButton
CheckRadioButton
IsDlgButtonChecked
SendDlgItemMessageA
ScrollWindowEx
IsDialogMessageA
DrawTextExA
GrayStringA
TabbedTextOutA
GetWindowDC
GetMenuItemInfoA
CopyImage
ShowOwnedPopups
DeleteMenu
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
GetDialogBaseUnits
GetNextDlgGroupItem
WindowFromPoint
DrawFocusRect
SetRectEmpty
GetIconInfo
MessageBeep
GetAsyncKeyState
EnableScrollBar
InvertRect
LoadCursorW
NotifyWinEvent
GetMenuDefaultItem
MapVirtualKeyA
SetLayeredWindowAttributes
EnumDisplayMonitors
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateA
LoadImageW
DrawEdge
DrawFrameControl
IsMenu
UpdateLayeredWindow
MonitorFromPoint
BringWindowToTop
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
GetMenuBarInfo
UnpackDDElParam
ReuseDDElParam
GetKeyNameTextA
TrackMouseEvent
LoadMenuW
GetComboBoxInfo
GetSystemMenu
PostThreadMessageA
WaitMessage
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
DestroyAcceleratorTable
CopyAcceleratorTableA
SetCursorPos
SetParent
LockWindowUpdate
SetClassLongA
GetDoubleClickTime
CopyIcon
SetMenuDefaultItem
ModifyMenuA
RegisterClipboardFormatA
CharUpperBuffA
FrameRect
EnumChildWindows
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
IsClipboardFormatAvailable
SubtractRect
SendNotifyMessageA
InSendMessage
CreateMenu
MapDialogRect
GetDCEx
DestroyCursor
DrawIcon
WindowFromDC
GetTabbedTextExtentA
GetTabbedTextExtentW
GetDC
ReleaseDC
BeginPaint
EndPaint
GetUpdateRect
InvalidateRect
MapWindowPoints
IsRectEmpty
PtInRect
GetWindow
wsprintfA
CallWindowProcA
DestroyWindow
GetWindowRgn
LoadCursorA
SetCursor
InflateRect
UnionRect
OffsetRect
GetMessageA
TranslateMessage
DispatchMessageA
SendMessageA
SetCapture
GetKeyState
GetFocus
GetTopWindow
InvalidateRgn
CreateAcceleratorTableA
GetWindowTextLengthA
GetWindowTextA
SetRect
FillRect
DrawTextA
CharPrevA
DrawIconEx
GetSysColor
ClientToScreen
GetCaretPos
SetCaretPos
ShowCaret
HideCaret
CreateCaret
IsZoomed
IntersectRect
CharNextA
GetMonitorInfoA
MonitorFromWindow
LoadImageA
AdjustWindowRectEx
GetPropA
SetPropA
GetMenu
GetSystemMetrics
EnableWindow
GetClassInfoExA
RegisterClassA
SetFocus
gdi32
SetMapperFlags
SelectPalette
RectVisible
PtVisible
PlayMetaFile
SetGraphicsMode
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
SetMapMode
SetLayout
SetROP2
GetPixel
GetObjectType
SetPolyFillMode
OffsetClipRgn
GetLayout
GdiFlush
ExtTextOutA
TextOutA
MoveToEx
SetTextColor
SetStretchBltMode
StretchBlt
SetBkMode
SetBkColor
GetCurrentPositionEx
SelectClipRgn
RoundRect
LineTo
GetTextExtentPoint32A
GetClipBox
GetCharABCWidthsA
CreateSolidBrush
CreatePenIndirect
CombineRgn
GetDeviceCaps
SetWindowOrgEx
GetObjectA
GetTextMetricsA
SaveDC
RestoreDC
Rectangle
GetStockObject
CreatePen
CreateFontIndirectA
CreateCompatibleBitmap
BitBlt
CreateDIBSection
SelectObject
PtInRegion
DeleteDC
CreateRectRgn
CreateCompatibleDC
DeleteObject
CreateRoundRectRgn
SetTextCharacterExtra
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
StartDocA
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
OffsetViewportOrgEx
OffsetWindowOrgEx
GetClipRgn
ExcludeClipRect
Escape
CreatePatternBrush
CreateHatchBrush
CreateDIBPatternBrushPt
CreateBitmap
CreateDCA
CopyMetaFileA
ExtSelectClipRgn
CreateRectRgnIndirect
DeleteMetaFile
CreateMetaFileA
CloseMetaFile
GetTextFaceA
GetTextExtentPoint32W
GetTextExtentPointA
GetTextAlign
GetStretchBltMode
GetPolyFillMode
GetNearestColor
GetBkMode
GetROP2
SetAbortProc
AbortDoc
EndPage
StartPage
EndDoc
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
GetBoundsRect
FillRgn
SetPaletteEntries
ExtFloodFill
SetPixelV
FrameRgn
StretchDIBits
GetCharWidthA
CreateFontA
GetCurrentObject
OffsetRgn
GetRgnBox
EnumFontFamiliesExA
Polyline
Polygon
CreatePolygonRgn
GetTextColor
Ellipse
CreateEllipticRgn
SetDIBColorTable
SetPixel
GetDIBits
GetTextCharsetInfo
EnumFontFamiliesA
CreateDIBitmap
GetBkColor
RealizePalette
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
DPtoLP
SetRectRgn
PatBlt
GetMapMode
ScaleWindowExtEx
ScaleViewportExtEx
comdlg32
GetOpenFileNameA
GetSaveFileNameA
advapi32
RegSetValueA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegDeleteValueA
RegOpenKeyExW
RegSetValueExA
RegEnumValueA
SetFileSecurityA
GetFileSecurityA
RegCreateKeyExA
GetSecurityDescriptorSacl
SetSecurityInfo
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegCloseKey
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA
CloseServiceHandle
OpenSCManagerA
OpenServiceA
QueryServiceConfigA
OpenProcessToken
CreateProcessAsUserA
DuplicateTokenEx
AdjustTokenPrivileges
LookupPrivilegeValueA
shell32
ShellExecuteA
DragQueryFileA
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHBrowseForFolderA
SHAppBarMessage
ShellExecuteExA
SHGetPathFromIDListA
SHAddToRecentDocs
SHGetFileInfoA
SHGetSpecialFolderPathW
Shell_NotifyIconA
ExtractIconA
DragFinish
ole32
SetConvertStg
StringFromGUID2
CoDisconnectObject
OleRegGetUserType
CreateStreamOnHGlobal
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleSetMenuDescriptor
StgOpenStorage
StgOpenStorageOnILockBytes
StgIsStorageFile
CreateFileMoniker
CreateILockBytesOnHGlobal
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
StgCreateDocfileOnILockBytes
CreateGenericComposite
CreateItemMoniker
WriteClassStm
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreateLinkToFile
OleCreateFromFile
OleLoad
OleSave
OleSaveToStream
OleSetContainedObject
OleGetIconOfClass
GetHGlobalFromILockBytes
OleRun
PropVariantCopy
OleRegGetMiscStatus
OleRegEnumVerbs
OleQueryLinkFromData
OleQueryCreateFromData
OleIsRunning
CoGetMalloc
GetRunningObjectTable
CreateDataAdviseHolder
CreateOleAdviseHolder
CoFreeUnusedLibraries
OleUninitialize
CoGetClassObject
CoRegisterClassObject
CoRevokeClassObject
CoRegisterMessageFilter
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
WriteClassStg
ReadClassStg
CreateBindCtx
CoTreatAsClass
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
OleLockRunning
CLSIDFromProgID
CLSIDFromString
OleCreate
OleInitialize
StgCreateDocfile
CoCreateInstance
CoInitializeEx
CoUninitialize
CoCreateGuid
CoInitialize
oleaut32
VariantClear
VariantInit
SysAllocStringLen
SysStringLen
SysFreeString
SysAllocString
SysStringByteLen
SysAllocStringByteLen
LoadTypeLi
LoadRegTypeLi
RegisterTypeLi
SysReAllocStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCreate
CreateErrorInfo
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayRedim
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayLock
SafeArrayUnlock
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayPutElement
SafeArrayCopy
SafeArrayPtrOfIndex
VariantCopy
VariantChangeType
VarDateFromStr
VarCyFromStr
VarBstrFromCy
VarBstrFromDate
VarBstrFromDec
VarDecFromStr
GetErrorInfo
SetErrorInfo
SafeArrayDestroyDescriptor
msimg32
TransparentBlt
AlphaBlend
comctl32
_TrackMouseEvent
ord17
uxtheme
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsAppThemed
CloseThemeData
GetThemeSysColor
GetWindowTheme
GetThemePartSize
OpenThemeData
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeText
gdiplus
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipDeleteFont
GdipDrawString
GdipSetTextRenderingHint
GdipDeleteStringFormat
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipCloneImage
GdipDeleteGraphics
GdipCreateFromHDC
GdipCloneBrush
GdipCreateLineBrushI
GdipCreateStringFormat
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipSetInterpolationMode
GdipDrawImageRectI
GdipAlloc
GdipFree
GdiplusStartup
GdiplusShutdown
GdipDeleteBrush
imm32
ImmGetOpenStatus
ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
txfilter32
ord3
ord2
ord4
ord5
ord1
sqlite3x86
?execDML@CppSQLite3DB@@QAEHPBD@Z
?execQuery@CppSQLite3DB@@QAE?AVCppSQLite3Query@@PBD@Z
?tableExists@CppSQLite3DB@@QAE_NPBD@Z
?close@CppSQLite3DB@@QAEXXZ
?open@CppSQLite3DB@@QAEXPBD@Z
??1CppSQLite3DB@@UAE@XZ
??0CppSQLite3DB@@QAE@XZ
?nextRow@CppSQLite3Query@@QAEXXZ
?eof@CppSQLite3Query@@QAE_NXZ
?getStringField@CppSQLite3Query@@QAEPBDPBD0@Z
?getIntField@CppSQLite3Query@@QAEHPBDH@Z
??1CppSQLite3Query@@UAE@XZ
userenv
DestroyEnvironmentBlock
CreateEnvironmentBlock
iphlpapi
GetAdaptersInfo
winmm
PlaySoundA
oleacc
LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject
oledlg
ord8
winspool.drv
ClosePrinter
GetJobA
DocumentPropertiesA
OpenPrinterA
Sections
.text Size: 2.3MB - Virtual size: 2.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 539KB - Virtual size: 538KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 40KB - Virtual size: 73KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 72KB - Virtual size: 71KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 196KB - Virtual size: 196KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ