General
-
Target
2024-04-20_7fbaca21d695af7e2532aa59dadd51c4_magniber_revil_wapomi
-
Size
17.7MB
-
Sample
240420-bsfqfsdf6w
-
MD5
7fbaca21d695af7e2532aa59dadd51c4
-
SHA1
8debcb21d24a156e9b572cfa567688a00c3bc433
-
SHA256
c3095f50f89ad7739c79c9df58dec7c883d5f5bcb9673b57d4a50aebc028f5c2
-
SHA512
ca7cb712e18cbf5314e94fab6f7ca44c581818b214692aefe1fec25635984a59399657fc48fa1674556d2079322539604ec21e4fafce10194f93781ba95f959c
-
SSDEEP
393216:diG5VlHaUqYr/Bm/grjWdwJJsv6tWKFdu9CU2:Y+haUqYrJegrjWdwO2
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-20_7fbaca21d695af7e2532aa59dadd51c4_magniber_revil_wapomi.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-20_7fbaca21d695af7e2532aa59dadd51c4_magniber_revil_wapomi.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
2024-04-20_7fbaca21d695af7e2532aa59dadd51c4_magniber_revil_wapomi
-
Size
17.7MB
-
MD5
7fbaca21d695af7e2532aa59dadd51c4
-
SHA1
8debcb21d24a156e9b572cfa567688a00c3bc433
-
SHA256
c3095f50f89ad7739c79c9df58dec7c883d5f5bcb9673b57d4a50aebc028f5c2
-
SHA512
ca7cb712e18cbf5314e94fab6f7ca44c581818b214692aefe1fec25635984a59399657fc48fa1674556d2079322539604ec21e4fafce10194f93781ba95f959c
-
SSDEEP
393216:diG5VlHaUqYr/Bm/grjWdwJJsv6tWKFdu9CU2:Y+haUqYrJegrjWdwO2
Score9/10-
Detects executables packed with ASPack
-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-