2024-04-16_102e6c2320298752608900a157f0506d_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-16_102e6c2320298752608900a157f0506d_magniber
Size

1.6MB
MD5

102e6c2320298752608900a157f0506d
SHA1

f40e2217655a1f79c3521f7408d08a2e546cf326
SHA256

60ccbcf31424ec2705ababe1e8205627991a97172b86868aed9d1c4434474e4e
SHA512

d237aac5c3d61c71529ec6f517fa15c28bda98f6462276d346e101977935fd8259b3b2e7017c5443464df4a985234130eaabc2062cbe11d1583eb0b1e6026f8d
SSDEEP

24576:/fNyFZUUehZwmU98mpGb1dOOTD1MhS0dyYY5ayvCTShOAWHu5:nNIZghemLpOS1U5T9AWHi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-16_102e6c2320298752608900a157f0506d_magniber

Files

2024-04-16_102e6c2320298752608900a157f0506d_magniber
.exe windows:6 windows x86 arch:x86

8361277c14d851f9e746b75a5be321af

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\suoha\onekeyfun\onekeyfun\Release\xunyouspeed.pdb

Imports

kernel32

LoadLibraryA
GetModuleHandleA
GetVersionExA
GetLocalTime
FreeLibrary
GetVersionExW
GetTickCount
MulDiv
GetModuleHandleW
FindResourceW
SizeofResource
LockResource
LoadResource
WriteConsoleW
SetEndOfFile
HeapSize
FlushFileBuffers
CreateFileW
SetConsoleCtrlHandler
GetProcessHeap
GetStringTypeW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
FreeResource
IsValidCodePage
FindNextFileW
FindFirstFileExW
OutputDebugStringW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetTimeZoneInformation
GetFileSizeEx
GetConsoleCP
SetFilePointerEx
SetStdHandle
ReadConsoleW
GetConsoleMode
DecodePointer
HeapReAlloc
GetFileType
GetCurrentThread
GetModuleHandleExW
ExitProcess
WriteFile
GetStdHandle
ReadFile
LoadLibraryExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
InterlockedFlushSList
InterlockedPushEntrySList
RaiseException
RtlUnwind
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
InitializeCriticalSectionAndSpinCount
CloseHandle
GlobalLock
GlobalUnlock
GlobalAlloc
LocalFree
SetLastError
GetFullPathNameW
FindFirstFileW
FindClose
GetFileAttributesW
Sleep
FlushInstructionCache
GetCurrentProcess
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
HeapFree
HeapAlloc
HeapDestroy
HeapCreate
MultiByteToWideChar
GetLastError
SetCurrentDirectoryW
GetModuleFileNameW
OutputDebugStringA
LoadLibraryW
IsBadReadPtr
WideCharToMultiByte
GetProcAddress
GetACP
lstrlenA

user32

GetWindowLongW
ShowWindow
DestroyWindow
SetWindowLongW
SetWindowPos
DefWindowProcW
MessageBoxW
UnregisterClassW
RegisterClassExW
CreateWindowExW
SendMessageW
GetClientRect
GetWindowRect
MapWindowPoints
GetParent
GetWindow
LoadCursorW
MonitorFromWindow
GetMonitorInfoW
TrackMouseEvent
PostMessageW
PostQuitMessage
IsWindow
AnimateWindow
GetDlgItem
CallWindowProcW
GetActiveWindow
SetLayeredWindowAttributes
GetDesktopWindow
SetActiveWindow
EnableWindow
GetForegroundWindow
MsgWaitForMultipleObjects
SetMenuContextHelpId
SetForegroundWindow
GetMenuItemInfoW
SetMenuInfo
GetMenuInfo
TrackPopupMenu
DeleteMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
CheckMenuItem
DestroyMenu
CreatePopupMenu
IsWindowEnabled
IsMenu
UpdateLayeredWindow
SystemParametersInfoA
DrawTextW
IsWindowVisible
GetWindowPlacement
LoadIconW
GetSystemMetrics
GetSysColor
EnableMenuItem
ClientToScreen
MapVirtualKeyA
CharLowerBuffW
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
LoadImageW
CreateIconFromResource
LoadBitmapW
DestroyCursor
GetKeyState
GetFocus
EqualRect
SetRect
GetIconInfo
PtInRect
OffsetRect
SetCursor
CharNextW
DestroyIcon
GetClassNameW
IsRectEmpty
UnionRect
IntersectRect
InflateRect
CopyRect
ScreenToClient
SetCaretPos
HideCaret
GetCaretBlinkTime
CreateCaret
GetCursorPos
SetWindowTextW
InvalidateRect
EndPaint
BeginPaint
ReleaseDC
GetDC
UpdateWindow
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetCapture
FillRect
InvertRect
DrawIconEx
SetFocus
IsZoomed
IsIconic

gdi32

CreatePen
Pie
PtInRegion
SetViewportOrgEx
CreateCompatibleBitmap
GetDCOrgEx
SetBkMode
Rectangle
GetStockObject
GetClipBox
CreateSolidBrush
CreateFontIndirectW
SetGraphicsMode
GetDeviceCaps
CreateBitmap
CreateRoundRectRgn
EnumFontsW
GetObjectW
StretchBlt
SelectObject
DeleteDC
CreateCompatibleDC
DeleteObject
BitBlt
RectInRegion
Arc
CombineRgn
CreateEllipticRgnIndirect
OffsetRgn
CreatePatternBrush
CreateRectRgn
CreateRectRgnIndirect
Ellipse
ExcludeClipRect
GetClipRgn
GetRgnBox
GetTextColor
GetTextExtentPoint32W
IntersectClipRect
GetViewportOrgEx
GetCurrentObject
Polyline
ExtCreatePen
CreateDIBSection
SetWorldTransform
GetWorldTransform
SetTextColor
SetROP2
SetRectRgn
ExtSelectClipRgn
SaveDC
RoundRect
RestoreDC

shell32

ShellExecuteW

ole32

OleInitialize
CreateStreamOnHGlobal
OleUninitialize
CLSIDFromString
CreateBindCtx
CoCreateInstance
CLSIDFromProgID
OleLockRunning

oleaut32

VariantInit
SysAllocString
SysFreeString
SetErrorInfo
CreateErrorInfo
VariantChangeType
GetErrorInfo
VariantClear

shlwapi

StrToIntExW

imm32

ImmReleaseContext
ImmAssociateContext
ImmGetContext

gdiplus

GdipAlloc
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipDrawImageRectI
GdipGraphicsClear
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipImageSelectActiveFrame
GdipImageGetFrameCount
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipSaveImageToFile
GdipDisposeImage
GdipCloneImage
GdiplusShutdown
GdiplusStartup
GdipFree

msimg32

AlphaBlend
GradientFill

Sections

.text
Size: 1020KB - Virtual size: 1020KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 276KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 25KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 146KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8361277c14d851f9e746b75a5be321af

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

shell32

ole32

oleaut32

shlwapi

imm32

gdiplus

msimg32

Sections

.text Size: 1020KB - Virtual size: 1020KB

.rdata Size: 276KB - Virtual size: 275KB

.data Size: 25KB - Virtual size: 94KB

.rsrc Size: 141KB - Virtual size: 140KB

.reloc Size: 146KB - Virtual size: 148KB

.text
Size: 1020KB - Virtual size: 1020KB

.rdata
Size: 276KB - Virtual size: 275KB

.data
Size: 25KB - Virtual size: 94KB

.rsrc
Size: 141KB - Virtual size: 140KB

.reloc
Size: 146KB - Virtual size: 148KB