General
-
Target
2024-04-27_0fec6e7f658dabd5693071fdeba1bef0_magniber_revil
-
Size
17.9MB
-
Sample
240427-ms5kcshe4s
-
MD5
0fec6e7f658dabd5693071fdeba1bef0
-
SHA1
dcc3bd498c9fb998b71c060e98001d5c423fc720
-
SHA256
1f7cd9aa0b1ca7da749f176dd1e27bec59dccc7a47eca4a0234a96ffd59237bf
-
SHA512
b6c42e946bb73e2d504c2277da24194e020f4f8b7dfc8c010d7cd3b1f559e02cf02a1c53fd5cd6c99045d6f48ee8015c8edaeb09247d1c3e438ffeb084a3c07e
-
SSDEEP
196608:sGDZ9hB+JsVSeYmvvsqirsYmDwwzuhK+IAsrZOurqN+ElcA9ORd3MM:ZZ9vjVXPsqPtz3jdOurqNjG3
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-27_0fec6e7f658dabd5693071fdeba1bef0_magniber_revil.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-27_0fec6e7f658dabd5693071fdeba1bef0_magniber_revil.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-04-27_0fec6e7f658dabd5693071fdeba1bef0_magniber_revil
-
Size
17.9MB
-
MD5
0fec6e7f658dabd5693071fdeba1bef0
-
SHA1
dcc3bd498c9fb998b71c060e98001d5c423fc720
-
SHA256
1f7cd9aa0b1ca7da749f176dd1e27bec59dccc7a47eca4a0234a96ffd59237bf
-
SHA512
b6c42e946bb73e2d504c2277da24194e020f4f8b7dfc8c010d7cd3b1f559e02cf02a1c53fd5cd6c99045d6f48ee8015c8edaeb09247d1c3e438ffeb084a3c07e
-
SSDEEP
196608:sGDZ9hB+JsVSeYmvvsqirsYmDwwzuhK+IAsrZOurqN+ElcA9ORd3MM:ZZ9vjVXPsqPtz3jdOurqNjG3
Score8/10-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Checks for any installed AV software in registry
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-