2024-04-21_0d55f6663c04e7330124022988b1d7d1_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-21_0d55f6663c04e7330124022988b1d7d1_magniber
Size

13.9MB
MD5

0d55f6663c04e7330124022988b1d7d1
SHA1

b90dc039acf6b7b51c29b404cabf97ecbc438ee3
SHA256

c524655ddf2827793b72979786f0c63944c376063794c55160141f4f4101fb38
SHA512

63aa0f83522eea36202670a20d6e3b02bef854a114105913b817cf8ca81ca2e1de297e67c19a5dd1230951c512adfd87d80a734f3edd92a18d845da1db91b121
SSDEEP

196608:JftD6lGoVo8N8ipAuOwUIge6AmurPUu6082CP8y0hpxYu0SbX0:JVDFShAudpPb7CPbcL0S70

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-21_0d55f6663c04e7330124022988b1d7d1_magniber

Files

2024-04-21_0d55f6663c04e7330124022988b1d7d1_magniber
.exe windows:5 windows x86 arch:x86

85e0b70836c89897263a478064ea5bd9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

s:\Build\studioone_1_6\build\win\Release\Studio One.pdb

Imports

kernel32

GetCommandLineW
SetDllDirectoryW
GetModuleFileNameW
LocalFree
GetProcAddress
GetModuleHandleW
SetEnvironmentVariableA
CompareStringW
CompareStringA
FlushFileBuffers
CloseHandle
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetTimeZoneInformation
ReadFile
GetConsoleMode
GetConsoleCP
SetFilePointer
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetLocaleInfoA
GetLocaleInfoW
InitializeCriticalSectionAndSpinCount
LoadLibraryA
InterlockedExchange
FreeLibrary
SetConsoleCtrlHandler
VirtualAlloc
HeapReAlloc
HeapAlloc
EnterCriticalSection
FatalAppExitA
LeaveCriticalSection
GetModuleHandleA
RaiseException
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapFree
VirtualFree
HeapDestroy
HeapCreate
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
HeapSize
Sleep
GetCurrentThread
InterlockedDecrement
GetLastError
GetCurrentThreadId
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
GetStartupInfoA
GetCommandLineA
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
TlsGetValue

shell32

CommandLineToArgvW

ccltext

CreateXmlParser
CreateXmlWriter
CreateDataTransformer
CreateTransformStream
CreateCStringDictionary
CreateStringDictionary
ccl_check_heap
ParseVariantString
CreateMutableCString
HashCString
GetEmptyString
CreateTextWriter
GetUnicodeUtilities
ccl_realloc
CreateTextStreamer
GetConstantCString
GetConstantString
ccl_free
ccl_malloc

cclsystem

CreateUrl
CreateSyncPrimitive
Hash
CreateUID
GetModuleIdentifier
DebugBreakPoint
DebugReportWarning
DebugPrintString
DebugPrintCString
DebugExitProcess
GetAtomTable
GetErrorHandler
GetMainModuleRef
GetExecutableLoader
ThreadSleep
SpinLockLock
SpinLockUnlock
GetProfileTime
CreateAtomicStack
CreateAdvancedLock
GetMediaThreadService
GetObjectTable
CreateThreadPool
LockMemory
GetMemoryAllocator
CreateThreadLocalSlot
SetThreadLocalData
GetThreadLocalData
DestroyThreadLocalSlot
AtomicGet
CreateNativeThread
GetThreadSelfID
GetThreadSelf
GetMainThread
GetSystemTicks
GetFileUtilities
GetThreadPool
GetServiceManager
GetConsole
GetScriptingManager
GetLocaleManager
GetLogger
GetPackageHandler
GetSystem
GetFileTypeRegistry
GetFileSystem
GetSignalHandler
GetTypeLibRegistry
GetPlugInManager
SpinLockTryLock

cclgui

GetWindowManager
GetCommandTable
GetGraphicsHelper
GetAlertService
GetHelpManager
GetDesktop
CreateFrameworkView
GetClipboard
GetThemeManager
GetGUI
GetSystemShell
GetFrameworkConfiguration
GetWorkspaceManager
GetGUIHelper

cclnet

GetWebFileService
GetTransferManager
GetWebService

cclsecurity

GetCryptoService
GetCryptoKeyStore
GetAuthorizationManager
GetCredentialManager

Sections

.text
Size: 6.1MB - Virtual size: 6.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 942KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6.2MB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

85e0b70836c89897263a478064ea5bd9

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

shell32

ccltext

cclsystem

cclgui

cclnet

cclsecurity

Sections

.text Size: 6.1MB - Virtual size: 6.1MB

.rdata Size: 1.5MB - Virtual size: 1.5MB

.data Size: 20KB - Virtual size: 942KB

.rsrc Size: 6.2MB - Virtual size: 6.2MB

.text
Size: 6.1MB - Virtual size: 6.1MB

.rdata
Size: 1.5MB - Virtual size: 1.5MB

.data
Size: 20KB - Virtual size: 942KB

.rsrc
Size: 6.2MB - Virtual size: 6.2MB