2024-05-14_11c1df0c94f2424a0caf4c2f8779c38a_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-14_11c1df0c94f2424a0caf4c2f8779c38a_magniber
Size

2.5MB
MD5

11c1df0c94f2424a0caf4c2f8779c38a
SHA1

e9e292eca5ef1f2e94785586789c20ed29bb9d81
SHA256

f532410f2b059cdb2424b7192fdda73e75c67a92736924a645b6a5dcd7bfae32
SHA512

2d32e267eb61ea044626bf4a005dface8842fbbc980297d5f553cacbfd86cd28439553905eba80f91b76bcf114d49b2b2acb9456ef7bb8a2a2b5c4e7d5e2d147
SSDEEP

49152:b/9Ev2h5KmNqzv8rRj6NRzT1XXWu2oakTZKKTZB7+ATu:bFE1vG0RzdpKKr+A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-14_11c1df0c94f2424a0caf4c2f8779c38a_magniber

Files

2024-05-14_11c1df0c94f2424a0caf4c2f8779c38a_magniber
.exe windows:5 windows x86 arch:x86

4593b55fe9a3d6acb246473b54cb9790

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

h:\Dev\Projects\Glowfish\Main\Release\Glowfish.pdb

Imports

user32

SetCursorPos
ClipCursor
GetClientRect
CreateIconIndirect
MessageBoxA
GetMonitorInfoA
MonitorFromWindow
PeekMessageA
GetMessageW
TranslateMessage
DispatchMessageA
SetClassLongA
CreateCursor
TrackMouseEvent
DefWindowProcA
ScreenToClient
ShowWindow
LoadIconA
LoadCursorA
SetForegroundWindow
GetActiveWindow
AdjustWindowRectEx
InvalidateRect
SetFocus
SetWindowPos
GetCursorPos
ShowCursor
ReleaseCapture
SetCapture
ClientToScreen
SetWindowLongA
CreateWindowExA
wsprintfA
RegisterClassExA
EnumDisplayMonitors
EnumDisplaySettingsA
RegisterRawInputDevices
ChangeDisplaySettingsExA

winmm

joySetCapture
joyReleaseCapture
joyGetPosEx
joyGetNumDevs
joyGetPos
timeEndPeriod
timeBeginPeriod
timeGetTime
joyGetDevCapsA

fmodex

FMOD_System_SetFileSystem
FMOD_System_Init
FMOD_System_GetVersion
FMOD_System_Create
FMOD_Memory_Initialize
FMOD_Channel_GetIndex
FMOD_Channel_Stop
FMOD_Channel_SetCallback
FMOD_Sound_Release
FMOD_System_CreateStream
FMOD_System_PlaySound
FMOD_DSP_SetActive
FMOD_DSP_SetBypass
FMOD_ChannelGroup_AddDSP
FMOD_System_CreateDSPByType
FMOD_System_CreateChannelGroup
FMOD_ChannelGroup_Release
FMOD_DSP_Release
FMOD_DSP_Remove
FMOD_ChannelGroup_AddGroup
FMOD_ChannelGroup_GetVolume
FMOD_ChannelGroup_GetNumChannels
FMOD_ChannelGroup_GetPaused
FMOD_System_Release
FMOD_ChannelGroup_SetVolume
FMOD_ChannelGroup_Stop
FMOD_Channel_IsPlaying
FMOD_Channel_GetLoopCount
FMOD_Memory_GetStats
FMOD_Sound_GetLength
FMOD_Channel_GetCurrentSound
FMOD_Channel_GetPosition
FMOD_Channel_GetPaused
FMOD_Channel_SetPaused
FMOD_Channel_SetPan
FMOD_Channel_SetVolume
FMOD_Channel_SetPosition
FMOD_Channel_SetChannelGroup
FMOD_Channel_SetLoopCount
FMOD_Channel_SetPriority
FMOD_Channel_GetMode
FMOD_ChannelGroup_SetPaused
FMOD_System_Update
FMOD_System_CreateSound

d3d8

Direct3DCreate8

ws2_32

WSACleanup
WSAStartup

kernel32

SetLastError
EnterCriticalSection
InterlockedDecrement
IsProcessorFeaturePresent
GetVersionExA
CompareStringW
CompareStringA
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoW
SetFilePointer
FlushFileBuffers
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
InitializeCriticalSectionAndSpinCount
LoadLibraryA
HeapReAlloc
GetCurrentProcessId
HeapCreate
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetConsoleMode
GetConsoleCP
IsValidCodePage
GetOEMCP
GetACP
GetStdHandle
HeapSize
GetCPInfo
LCMapStringW
LCMapStringA
GetProcAddress
GetModuleHandleW
GetStartupInfoA
GetCommandLineA
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
MultiByteToWideChar
WideCharToMultiByte
OutputDebugStringA
ExitProcess
GetTickCount
QueryPerformanceCounter
QueryPerformanceFrequency
GetModuleFileNameA
Sleep
GetDiskFreeSpaceExA
LocalFree
GetLastError
LocalAlloc
ExitThread
GetCurrentThreadId
GetSystemInfo
GetProcessTimes
GetCurrentProcess
TlsGetValue
WaitForSingleObject
SetThreadPriority
CreateThread
TlsSetValue
OpenThread
TlsAlloc
GetThreadTimes
ResumeThread
TerminateThread
TlsFree
CloseHandle
WriteFile
SetFilePointerEx
SetEndOfFile
CreateDirectoryW
DeleteFileW
GetFileSizeEx
CreateFileW
GetFileAttributesW
ReadFile
CopyFileW
MoveFileW
SetCurrentDirectoryW
FormatMessageA
GetModuleFileNameW
GetCurrentDirectoryW
FindClose
FindNextFileW
SetFileAttributesW
FindFirstFileW
RemoveDirectoryW
CreateMutexA
ReleaseMutex
GetModuleHandleA
DeleteCriticalSection
TryEnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
VirtualAlloc
VirtualFree
GetSystemTimeAsFileTime
CreateEventA
SetEvent
HeapAlloc
GetProcessHeap
HeapFree
InterlockedExchange
InterlockedIncrement

gdi32

DeleteDC
GetDeviceCaps
CreateBitmap
CreateDCA

advapi32

InitializeAcl
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegOpenKeyA
RegQueryValueExA
RegCloseKey
GetNamedSecurityInfoW
GetAclInformation
GetAce
AddAccessAllowedAce
SetFileSecurityW

shell32

SHGetSpecialFolderPathW
ShellExecuteA

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 369KB - Virtual size: 369KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 158KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 33B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4593b55fe9a3d6acb246473b54cb9790

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

user32

winmm

fmodex

d3d8

ws2_32

kernel32

gdi32

advapi32

shell32

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 369KB - Virtual size: 369KB

.data Size: 158KB - Virtual size: 208KB

.tls Size: 512B - Virtual size: 33B

.data1 Size: 2KB - Virtual size: 2KB

.rsrc Size: 196KB - Virtual size: 196KB

.reloc Size: 196KB - Virtual size: 195KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 369KB - Virtual size: 369KB

.data
Size: 158KB - Virtual size: 208KB

.tls
Size: 512B - Virtual size: 33B

.data1
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 196KB - Virtual size: 196KB

.reloc
Size: 196KB - Virtual size: 195KB