2024-04-15_fead5e95496afd01a6633717599a71f0_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-15_fead5e95496afd01a6633717599a71f0_magniber
Size

4.5MB
MD5

fead5e95496afd01a6633717599a71f0
SHA1

19b32a7c6dea1d5a50479c1223e44f3cacd0bbb4
SHA256

c01b7629689772701ff5e28a030df0eb6c155272f5fef63789f68b36adf71584
SHA512

f7057a91ea10de1c83ef39ce556aa843b9bd349a39e39f09192e66d819940289e5a38c65ddb88c34b6d99f1eb2c1910d3e0d1224eeb0ed47021c6836cb7c3466
SSDEEP

98304:XY8P1/i7T4iUOqVHev+F5fi8iNNiW8pCdFFLOAkGkzdnEVomFHKnP:IoziUOCHfXW8pCPFLOyomFHKnP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-15_fead5e95496afd01a6633717599a71f0_magniber

Files

2024-04-15_fead5e95496afd01a6633717599a71f0_magniber
.exe windows:6 windows x86 arch:x86

637beef10aaf67b1cc5b85c7b9c05302

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalSize
GlobalFree
GetCurrentDirectoryW
lstrcmpA
FileTimeToSystemTime
MultiByteToWideChar
GetThreadLocale
GetCurrentThread
GetVersionExW
CompareStringA
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetTickCount
GetDiskFreeSpaceW
GetFileTime
GetFullPathNameW
GetTempFileNameW
SetFileTime
ReplaceFileW
GetUserDefaultLCID
GlobalFlags
InitializeCriticalSection
LocalFree
FormatMessageW
CopyFileW
GetAtomNameW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalHandle
LocalAlloc
LocalReAlloc
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
SearchPathW
SetFilePointer
GetTempPathW
DeleteFileW
FindClose
FindFirstFileW
FlushFileBuffers
GetShortPathNameW
GetVolumeInformationW
LockFile
ReadFile
SetEndOfFile
UnlockFile
WriteFile
DuplicateHandle
GetCurrentProcess
lstrcmpiW
MoveFileW
GetStringTypeExW
GetProfileIntW
Sleep
FileTimeToLocalFileTime
GetFileAttributesExW
GetFileSizeEx
LocalFileTimeToFileTime
SetFileAttributesW
SystemTimeToTzSpecificLocalTime
FindResourceExW
SetErrorMode
GetWindowsDirectoryW
LocalLock
LocalUnlock
ResetEvent
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GlobalReAlloc
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
OutputDebugStringW
VirtualAlloc
RtlUnwind
InterlockedPushEntrySList
InterlockedFlushSList
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetSystemInfo
VirtualQuery
QueryPerformanceFrequency
GetCommandLineA
GetCommandLineW
HeapQueryInformation
SetStdHandle
GetFileType
GetStdHandle
GetModuleFileNameA
ExitProcess
GetACP
GetDateFormatW
GetTimeFormatW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetStringTypeW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
FindFirstFileExA
FindFirstFileExW
FindNextFileA
FindNextFileW
IsValidCodePage
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
SetConsoleCtrlHandler
WriteConsoleW
InitializeCriticalSectionAndSpinCount
WideCharToMultiByte
GlobalGetAtomNameW
GlobalUnlock
GlobalLock
GetCurrentProcessId
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeResource
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
SetLastError
EncodePointer
OutputDebugStringA
GlobalAlloc
GetFileSize
GetFileAttributesW
CreateFileW
VerifyVersionInfoW
lstrcpyW
VerSetConditionMask
ResumeThread
SuspendThread
SetThreadPriority
CreateEventW
WaitForSingleObject
SetEvent
CloseHandle
TerminateProcess
MulDiv
FindResourceW
SizeofResource
LockResource
LoadResource
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GetLastError
RaiseException
SystemTimeToFileTime
DecodePointer

user32

EnumDisplayMonitors
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateW
CopyImage
RegisterClipboardFormatW
DrawEdge
DrawFrameControl
DrawFocusRect
SetClassLongW
SetCapture
TrackMouseEvent
CharUpperW
GetAsyncKeyState
SetTimer
KillTimer
GetSystemMenu
DeleteMenu
MessageBeep
WindowFromPoint
NotifyWinEvent
GetUpdateRect
LockWindowUpdate
SetRect
UnionRect
UpdateLayeredWindow
EnableScrollBar
MonitorFromPoint
DestroyAcceleratorTable
GetIconInfo
ModifyMenuW
CharUpperBuffW
InsertMenuW
FrameRect
HideCaret
InvertRect
CreateDialogIndirectParamW
EndDialog
GetNextDlgTabItem
PostQuitMessage
ShowOwnedPopups
SetWindowContextHelpId
MapDialogRect
PostThreadMessageW
WaitMessage
RealChildWindowFromPoint
RemoveMenu
SendDlgItemMessageA
MonitorFromRect
InSendMessage
WindowFromDC
SetCursorPos
DestroyCursor
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
CreateAcceleratorTableW
CopyAcceleratorTableW
IsClipboardFormatAvailable
GetDoubleClickTime
CopyIcon
SubtractRect
SendNotifyMessageW
EnumChildWindows
GetComboBoxInfo
GetNextDlgGroupItem
GetDialogBaseUnits
CharNextW
InvalidateRgn
DrawIcon
GetDCEx
CreateMenu
IsCharLowerW
MapVirtualKeyExW
GetWindowRgn
GetTabbedTextExtentW
AppendMenuW
GetMenuState
SetParent
IsRectEmpty
SetWindowRgn
IsZoomed
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
ReuseDDElParam
UnpackDDElParam
GetMenuBarInfo
DestroyIcon
GetWindowThreadProcessId
GetDesktopWindow
OffsetRect
IntersectRect
SetCursor
LoadCursorW
DestroyMenu
CreatePopupMenu
TranslateAcceleratorW
LoadAcceleratorsW
ReleaseCapture
GetActiveWindow
MapVirtualKeyW
IsDialogMessageW
SetWindowTextW
ScrollWindowEx
IsWindowEnabled
SendDlgItemMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
GetWindowLongW
PtInRect
EqualRect
CopyRect
MapWindowPoints
MessageBoxW
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
EndPaint
BeginPaint
SetForegroundWindow
SetActiveWindow
TrackPopupMenuEx
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
SetMenu
GetMenu
GetCapture
GetKeyState
SetFocus
GetDlgCtrlID
GetDlgItem
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsMenu
IsWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetSysColorBrush
SetLayeredWindowAttributes
TranslateMessage
GetMessageW
SystemParametersInfoW
GetMenuItemInfoW
InsertMenuItemW
GetMenuStringW
ClientToScreen
IsIconic
LoadImageW
RedrawWindow
GetSystemMetrics
LoadBitmapW
GetParent
InflateRect
SetRectEmpty
GetSysColor
ScreenToClient
GetWindowRect
GetClientRect
GetKeyNameTextW
FillRect
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
DrawIconEx
GetCursorPos
SetMenuDefaultItem
BringWindowToTop
GetMenuDefaultItem
InvalidateRect
UpdateWindow
GetSubMenu
LoadMenuW
EnableWindow
GetFocus
IsChild
SendMessageW
UnregisterClassW
GetForegroundWindow

gdi32

SetBkColor
SetTextColor
CreateCompatibleBitmap
CreateCompatibleDC
GetCurrentObject
SelectObject
CreateDIBSection
CreateRectRgnIndirect
GetTextColor
BitBlt
CreateDIBPatternBrushPt
CreateHatchBrush
CreatePen
CreatePatternBrush
SetPixelV
GetTextFaceW
GetTextAlign
SetRectRgn
GetPolyFillMode
GetNearestColor
GetBkMode
CombineRgn
GetSystemPaletteEntries
DeleteDC
GetObjectW
GetTextExtentPoint32W
CreateFontIndirectW
DeleteObject
GetStockObject
CreateRectRgn
CreateSolidBrush
Escape
ExcludeClipRect
GetClipBox
GetClipRgn
PatBlt
GetStretchBltMode
GetMapMode
GetNearestPaletteIndex
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
DeleteMetaFile
CreateMetaFileW
CloseMetaFile
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
PolylineTo
PolyBezierTo
ExtTextOutW
TextOutW
MoveToEx
GetROP2
CreateBitmap
GetCurrentPositionEx
GetDeviceCaps
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
StartDocW
ArcTo
SetArcDirection
DPtoLP
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetTextMetricsW
GetDIBits
RealizePalette
SetPixel
StretchBlt
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetBkColor
CreatePolygonRgn
Polygon
PolyDraw
SelectClipPath
Polyline
CreateRoundRectRgn
Rectangle
RoundRect
CreateDCW
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
CopyMetaFileW
CreateFontW
GetCharWidthW
StretchDIBits
GetRgnBox
OffsetRgn
CreatePalette
GetPaletteEntries
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
LPtoDP
EnumFontFamiliesExW
GetWindowOrgEx
ExtCreatePen

oleaut32

SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayLock
SafeArrayUnlock
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayPutElement
SafeArrayCopy
SafeArrayPtrOfIndex
VariantCopy
VarDateFromStr
VarCyFromStr
VarBstrFromCy
VarBstrFromDate
VarBstrFromDec
VarDecFromStr
OleCreateFontIndirect
LoadTypeLi
LoadRegTypeLi
RegisterTypeLi
GetErrorInfo
SetErrorInfo
CreateErrorInfo
SafeArrayRedim
SafeArrayDestroy
SafeArrayGetElement
VariantClear
SysAllocString
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayCreate
SafeArrayAllocData
SafeArrayAllocDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
SysReAllocStringLen
SysStringLen
SysAllocStringByteLen
SysStringByteLen
SysFreeString
VariantChangeType
VariantInit
SysAllocStringLen

msimg32

TransparentBlt
AlphaBlend

comctl32

ImageList_AddMasked
InitCommonControlsEx

shlwapi

PathFindExtensionW
PathRemoveExtensionW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
StrFormatKBSizeW
PathFindFileNameW

uxtheme

CloseThemeData
GetThemeColor
GetCurrentThemeName
GetThemeSysColor
GetWindowTheme
IsAppThemed
DrawThemeText
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
OpenThemeData
DrawThemeParentBackground
DrawThemeBackground

oledlg

OleUIBusyW
ord4
OleUIObjectPropertiesW
ord1
OleUIAddVerbMenuW
OleUIChangeIconW
OleUIConvertW
ord6
OleUIPasteSpecialW

gdiplus

GdipDeleteGraphics
GdipSetInterpolationMode
GdipDrawImageRectI
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipCreateFromHDC
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipGetImagePaletteSize
GdiplusShutdown
GdipAlloc

oleacc

GetOleaccVersionInfo
GetRoleTextA
AccessibleChildren
WindowFromAccessibleObject
ObjectFromLresult
GetRoleTextW
CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmGetConversionListA
ImmGetRegisterWordStyleA
ImmSetCompositionStringW
ImmConfigureIMEA
ImmUnregisterWordA
ImmSetCompositionStringA
ImmSetCompositionWindow
ImmGetGuideLineA
ImmEnumRegisterWordW
ImmGetVirtualKey
ImmGetDefaultIMEWnd
ImmIsUIMessageA
ImmReleaseContext

winmm

PlaySoundW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter
GetJobW

shell32

ExtractIconW
SHAddToRecentDocs
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
SHGetFileInfoW
ShellExecuteW
SHAppBarMessage
DragFinish
DragQueryFileW
ShellExecuteExW

ole32

OleLoad
OleSave
OleSaveToStream
OleSetContainedObject
OleGetIconOfClass
GetHGlobalFromILockBytes
CreateDataAdviseHolder
CreateOleAdviseHolder
CoLockObjectExternal
GetRunningObjectTable
OleRun
OleIsRunning
CoGetMalloc
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleCreateFromFile
IsAccelerator
RegisterDragDrop
RevokeDragDrop
OleQueryLinkFromData
OleQueryCreateFromData
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoInitialize
CoCreateGuid
CoUninitialize
StringFromGUID2
CLSIDFromString
CoCreateInstance
CreateStreamOnHGlobal
OleCreateLinkToFile
OleCreateStaticFromData
OleCreateLinkFromData
OleCreateFromData
OleCreate
WriteClassStm
CreateItemMoniker
CreateGenericComposite
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
CoRevokeClassObject
CoRegisterClassObject
CoGetClassObject
CoInitializeEx
OleLockRunning
OleSetMenuDescriptor
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
OleGetClipboard
OleRegEnumVerbs
OleRegGetMiscStatus
CreateILockBytesOnHGlobal
CreateFileMoniker
StgIsStorageFile
StgOpenStorageOnILockBytes
StgOpenStorage
StgCreateDocfile
CoDisconnectObject
SetConvertStg
ReleaseStgMedium
OleRegGetUserType
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
WriteClassStg
ReadClassStg
CreateBindCtx
CoTreatAsClass
StringFromCLSID
CoTaskMemFree
CoTaskMemAlloc
PropVariantCopy
OleTranslateAccelerator
CLSIDFromProgID

advapi32

RegCloseKey
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegEnumKeyW
RegQueryValueW
GetFileSecurityW
SetFileSecurityW
RegSetValueW
RegEnumKeyExW
RegEnumValueW
RegOpenKeyExW

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 569KB - Virtual size: 568KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

637beef10aaf67b1cc5b85c7b9c05302

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

oleaut32

msimg32

comctl32

shlwapi

uxtheme

oledlg

gdiplus

oleacc

imm32

winmm

winspool.drv

shell32

ole32

advapi32

Sections

.text Size: 2.4MB - Virtual size: 2.4MB

.rdata Size: 569KB - Virtual size: 568KB

.data Size: 32KB - Virtual size: 60KB

.gfids Size: 142KB - Virtual size: 141KB

.giats Size: 512B - Virtual size: 28B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.text
Size: 2.4MB - Virtual size: 2.4MB

.rdata
Size: 569KB - Virtual size: 568KB

.data
Size: 32KB - Virtual size: 60KB

.gfids
Size: 142KB - Virtual size: 141KB

.giats
Size: 512B - Virtual size: 28B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 1.4MB - Virtual size: 1.4MB