Overview

overview

10

Static

static

3

2024-05-01...er.exe

windows7-x64

10

2024-05-01...er.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-01_ef39b5f572de71311808d710afaddfc4_magniber

  • Size

    1.4MB

  • Sample

    240501-nsr5psdh9z

  • MD5

    ef39b5f572de71311808d710afaddfc4

  • SHA1

    07309efa79fe447e181a050da9e1ab5587d415a0

  • SHA256

    3f726668408b36fe9a5b8b31fd986bed729d8b44b63670f2b6ca1b935ec7a2cc

  • SHA512

    8fa812ca02ea2dcd05b08d3226e7f3f153bcade78fc5c23c9708a82261d10e07bc242d42c0e12a58afcf875c95eb2c05df51746943a4f9905d93ae0f0fceeb4a

  • SSDEEP

    24576:QqM0QHRzf+BooooEJ8GYgqGneBPuzBCxxAih0lhSMXlhe94e4HCkAYtNQ:k0Oz2BooooEJsgmPmBCxG/k2e4TAYt6

Score
10/10
privateloaderbootkitloaderpersistence

Malware Config

Targets

    • Target

      2024-05-01_ef39b5f572de71311808d710afaddfc4_magniber

    • Size

      1.4MB

    • MD5

      ef39b5f572de71311808d710afaddfc4

    • SHA1

      07309efa79fe447e181a050da9e1ab5587d415a0

    • SHA256

      3f726668408b36fe9a5b8b31fd986bed729d8b44b63670f2b6ca1b935ec7a2cc

    • SHA512

      8fa812ca02ea2dcd05b08d3226e7f3f153bcade78fc5c23c9708a82261d10e07bc242d42c0e12a58afcf875c95eb2c05df51746943a4f9905d93ae0f0fceeb4a

    • SSDEEP

      24576:QqM0QHRzf+BooooEJ8GYgqGneBPuzBCxxAih0lhSMXlhe94e4HCkAYtNQ:k0Oz2BooooEJsgmPmBCxG/k2e4TAYt6

    Score
    10/10
    privateloaderbootkitloaderpersistence

    • PrivateLoader

      PrivateLoader is a downloader sold as a pay-per-install malware distribution service.

      loaderprivateloader

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks