Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_119f9d0d7fe0c33ba8f1d3d6614fc2c4_magniber.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
2024-05-23_119f9d0d7fe0c33ba8f1d3d6614fc2c4_magniber.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
General
-
Target
2024-05-23_119f9d0d7fe0c33ba8f1d3d6614fc2c4_magniber
-
Size
5.4MB
-
MD5
119f9d0d7fe0c33ba8f1d3d6614fc2c4
-
SHA1
3e43dc5b7e28ad6576e1fd3a059ae62b378f87cf
-
SHA256
96fe2242656c9376187b660a7a69d6d0f97f89f5b34c93d40932aad25cb6b742
-
SHA512
d06300d4b5ecd1eb575e212c222b5a4e93b79243b94966ca87840602faf72c682bc2d5f015d45aa344e5a9a9fd7d784b6386fd4e333f3206ef12a41806670d1b
-
SSDEEP
98304:149dyVZLfUmcwmJ1UJuexS/nUvnlunn2PNoD7BCkHIy30mN8FLOAkGkzdnEVomF1:1idyV9ftcwVxpPn8CkHIA0mN8FLOyomD
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-05-23_119f9d0d7fe0c33ba8f1d3d6614fc2c4_magniber
Files
-
2024-05-23_119f9d0d7fe0c33ba8f1d3d6614fc2c4_magniber.exe windows:6 windows x86 arch:x86
8ae1ae0e6a8a6919ab29f1cbb7dc0820
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
version
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
wininet
InternetSetStatusCallback
InternetSetCookieA
InternetOpenA
InternetCloseHandle
InternetOpenUrlA
InternetReadFile
InternetGetLastResponseInfoA
InternetSetOptionA
InternetQueryOptionA
InternetFindNextFileA
InternetQueryDataAvailable
InternetWriteFile
InternetErrorDlg
InternetGetCookieA
InternetSetFilePointer
HttpQueryInfoA
HttpEndRequestA
HttpSendRequestExA
HttpSendRequestA
HttpAddRequestHeadersA
HttpOpenRequestA
GopherGetAttributeA
GopherOpenFileA
GopherFindFirstFileA
GopherCreateLocatorA
FtpCommandA
InternetConnectA
InternetCanonicalizeUrlA
InternetCrackUrlA
FtpGetFileA
FtpPutFileA
FtpDeleteFileA
FtpRenameFileA
FtpFindFirstFileA
FtpOpenFileA
FtpCreateDirectoryA
FtpRemoveDirectoryA
FtpSetCurrentDirectoryA
FtpGetCurrentDirectoryA
msi
ord112
uxtheme
SetWindowTheme
GetThemePartSize
IsAppThemed
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetThemeSysColor
GetWindowTheme
DrawThemeText
IsThemeBackgroundPartiallyTransparent
kernel32
GetStringTypeW
CompareStringEx
lstrcpynA
GetVersion
GetFileType
GetStdHandle
GlobalMemoryStatus
FlushConsoleInputBuffer
RtlUnwind
InterlockedPushEntrySList
InterlockedFlushSList
ExitProcess
GetModuleHandleExW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetSystemInfo
VirtualAlloc
VirtualQuery
GetFullPathNameW
GetCommandLineA
GetCommandLineW
HeapQueryInformation
QueryPerformanceFrequency
SetStdHandle
LCMapStringEx
GetDriveTypeW
PeekNamedPipe
SetConsoleCtrlHandler
GetConsoleMode
GetNumberOfConsoleInputEvents
PeekConsoleInputA
ReadConsoleInputA
SetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleCP
DeleteFileW
GetTimeZoneInformation
GetLocaleInfoEx
GetTimeFormatW
CompareStringW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetFileAttributesExW
CreateDirectoryW
FindFirstFileExA
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
SleepConditionVariableSRW
WakeAllConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LocalUnlock
LocalLock
GetUserDefaultLCID
ReplaceFileA
GetDiskFreeSpaceA
SearchPathA
GetWindowsDirectoryA
GetProfileIntA
WaitForSingleObjectEx
SetCurrentDirectoryW
GetCurrentDirectoryW
WriteConsoleW
RaiseException
OutputDebugStringW
LoadResource
GetDateFormatW
GetTickCount64
GetTempPathA
FindResourceExW
GetCurrentDirectoryA
GetCPInfo
GetOEMCP
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetACP
GlobalFlags
SetErrorMode
GetStringTypeExA
MoveFileA
lstrcmpiA
GetShortPathNameA
LoadLibraryExA
GetCurrentProcess
DuplicateHandle
GetVolumeInformationA
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
GetThreadLocale
GetAtomNameA
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
lstrcmpA
GetCurrentThread
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
ResumeThread
SuspendThread
SetThreadPriority
CreateEventA
SetEvent
LocalAlloc
InitializeCriticalSectionAndSpinCount
VerifyVersionInfoA
lstrcpyA
VerSetConditionMask
FindNextFileA
VirtualProtect
GetCurrentProcessId
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryA
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
SystemTimeToFileTime
SetFileTime
SetFileAttributesA
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
FileTimeToLocalFileTime
CreateFileA
FormatMessageA
LocalFree
GlobalFree
GlobalSize
GlobalAlloc
SetLastError
MoveFileExA
GlobalUnlock
GlobalLock
GetVersionExA
Sleep
InitializeCriticalSection
MultiByteToWideChar
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GetLastError
DecodePointer
MulDiv
GetProcAddress
GetModuleHandleA
GenerateConsoleCtrlEvent
LockResource
CopyFileA
GetTempFileNameA
GetStartupInfoA
GetTickCount
CreateProcessA
TerminateProcess
WaitForSingleObject
CreatePipe
SetHandleInformation
CloseHandle
RemoveDirectoryA
ReadFile
GetFileAttributesExA
GetFileAttributesA
DeleteFileA
CreateDirectoryA
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetModuleFileNameA
GetLocalTime
FindFirstFileA
FindClose
OutputDebugStringA
WideCharToMultiByte
FindResourceW
SizeofResource
CreateFileW
user32
DrawEdge
GetMenuItemInfoA
DestroyMenu
MessageBeep
IsZoomed
LoadImageW
PostQuitMessage
ShowOwnedPopups
TranslateMessage
GetMessageA
EnumDisplayMonitors
LoadCursorW
GetSysColorBrush
SetLayeredWindowAttributes
CopyImage
DestroyIcon
WindowFromPoint
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetNextDlgGroupItem
MapVirtualKeyA
GetKeyNameTextA
GetAsyncKeyState
DrawFocusRect
DrawStateA
GetCursorPos
GetIconInfo
DrawIconEx
IsRectEmpty
TrackMouseEvent
GetWindowThreadProcessId
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
IsDialogMessageA
SetWindowTextA
ScrollWindowEx
IsWindowEnabled
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextA
SetDlgItemTextA
GetDlgItemInt
SetDlgItemInt
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
DrawFrameControl
SetWindowsHookExA
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
GetWindowLongA
PtInRect
EqualRect
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenuEx
TrackPopupMenu
ToAsciiEx
GetMenu
GetCapture
GetKeyState
SetFocus
GetUserObjectInformationW
GetDlgCtrlID
GetDlgItem
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
IsWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
SetWindowRgn
BringWindowToTop
SetCursorPos
SetParent
CopyIcon
NotifyWinEvent
CreatePopupMenu
EnableScrollBar
FrameRect
SetRect
CharUpperA
RealChildWindowFromPoint
GetDialogBaseUnits
GetKeyboardState
SetClipboardData
RegisterWindowMessageA
LoadBitmapW
EmptyClipboard
SetClassLongA
DestroyAcceleratorTable
LoadMenuW
DeleteMenu
UnionRect
MonitorFromPoint
GetMenuDefaultItem
SetMenuDefaultItem
UnhookWindowsHookEx
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
SetRectEmpty
SendDlgItemMessageA
InflateRect
CopyRect
FillRect
GetSysColor
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
RemoveMenu
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
SystemParametersInfoA
LoadImageA
LoadIconW
LoadCursorA
OffsetRect
IntersectRect
SetCursor
RedrawWindow
DrawIcon
AppendMenuA
GetSystemMenu
GetSystemMetrics
IsClipboardFormatAvailable
GetClipboardData
CloseClipboard
OpenClipboard
IsIconic
GetWindowPlacement
UnregisterClassA
MapWindowPoints
GetClientRect
GetDC
InvalidateRect
UpdateWindow
GetParent
PostMessageA
MapDialogRect
MessageBoxA
GetWindowRect
EnableWindow
LoadAcceleratorsW
CreateAcceleratorTableA
CopyAcceleratorTableA
LockWindowUpdate
WaitMessage
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
GetMenuBarInfo
UnpackDDElParam
ReuseDDElParam
SendMessageA
ModifyMenuA
PostThreadMessageA
GetProcessWindowStation
EnumChildWindows
RegisterClipboardFormatA
GetDoubleClickTime
GetUpdateRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
HideCaret
InvertRect
SendNotifyMessageA
MonitorFromRect
InSendMessage
GetKeyboardLayout
GetTabbedTextExtentW
GetTabbedTextExtentA
GetDCEx
DestroyCursor
GetWindowRgn
GetComboBoxInfo
MapVirtualKeyExA
IsCharLowerA
SubtractRect
CharUpperBuffA
WindowFromDC
SetMenu
CreateMenu
UpdateLayeredWindow
gdi32
CreatePen
CreatePatternBrush
CreateRectRgn
Escape
ExcludeClipRect
GetClipRgn
GetCurrentPositionEx
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SetBkColor
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextColor
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
StartDocA
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
MoveToEx
TextOutA
ExtTextOutA
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
CreateHatchBrush
CombineRgn
CreateRectRgnIndirect
GetMapMode
PatBlt
SetRectRgn
DPtoLP
GetTextColor
GetTextExtentPoint32A
GetTextMetricsA
Polygon
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
CreateEllipticRgn
Ellipse
GetBkColor
CreatePolygonRgn
Polyline
Rectangle
RoundRect
CreateRoundRectRgn
GetDIBits
RealizePalette
SetPixel
SetDIBColorTable
GetCurrentObject
EnumFontFamiliesExA
GetRgnBox
OffsetRgn
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
LPtoDP
CreateFontA
GetCharWidthA
StretchDIBits
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetWindowOrgEx
GetViewportOrgEx
CloseMetaFile
CreateMetaFileA
DeleteMetaFile
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
ExtFloodFill
SetPaletteEntries
SetPixelV
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextExtentPointA
GetTextExtentPoint32W
GetTextFaceA
CreateDIBPatternBrushPt
CreateBitmap
BitBlt
CreateDCA
CopyMetaFileA
GetDCOrgEx
CreateDIBSection
StretchBlt
SelectObject
GetClipBox
CreateCompatibleDC
DeleteObject
DeleteDC
GetObjectA
GetDeviceCaps
GetBitmapBits
CreateFontIndirectA
GetStockObject
ScaleWindowExtEx
SelectPalette
CreateSolidBrush
msimg32
TransparentBlt
AlphaBlend
winspool.drv
GetJobA
ClosePrinter
OpenPrinterA
DocumentPropertiesA
advapi32
RegOpenKeyExW
RegOpenKeyExA
GetFileSecurityA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegisterEventSourceA
ReportEventA
DeregisterEventSource
SetFileSecurityA
RegEnumKeyExA
RegEnumValueA
RegCloseKey
RegQueryValueA
RegEnumKeyA
RegSetValueA
RegSetValueExA
RegQueryInfoKeyA
RegFlushKey
RegDeleteValueA
shell32
SHGetPathFromIDListA
SHGetFolderLocation
ShellExecuteExA
SHGetFileInfoA
SHGetMalloc
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHGetDesktopFolder
ExtractIconA
SHAddToRecentDocs
SHAppBarMessage
DragFinish
DragQueryFileA
ShellExecuteA
comctl32
ImageList_GetImageInfo
ImageList_GetBkColor
InitCommonControlsEx
ImageList_SetBkColor
shlwapi
UrlUnescapeA
PathFindFileNameA
PathRemoveExtensionA
PathFileExistsA
PathIsUNCA
PathStripToRootA
PathRemoveFileSpecW
StrFormatKBSizeA
PathFindExtensionA
ole32
GetRunningObjectTable
CreateOleAdviseHolder
CreateDataAdviseHolder
OleRun
OleGetIconOfClass
OleSetContainedObject
OleSaveToStream
OleSave
OleLoad
OleCreateFromFile
OleCreateLinkToFile
OleCreateStaticFromData
OleCreateLinkFromData
OleCreateFromData
OleCreate
CreateItemMoniker
CreateGenericComposite
GetHGlobalFromILockBytes
WriteClassStm
StgCreateDocfileOnILockBytes
PropVariantCopy
DoDragDrop
OleIsCurrentClipboard
OleQueryCreateFromData
OleSetClipboard
OleRegEnumVerbs
OleRegGetMiscStatus
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CreateFileMoniker
CreateILockBytesOnHGlobal
StgIsStorageFile
OleIsRunning
StgOpenStorage
StgCreateDocfile
OleLockRunning
OleSetMenuDescriptor
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
CoInitializeEx
CreateStreamOnHGlobal
CLSIDFromString
CoDisconnectObject
StringFromGUID2
CoCreateGuid
CoUninitialize
CoInitialize
CoCreateInstance
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
CreateBindCtx
CoTreatAsClass
WriteClassStg
ReadClassStg
CoTaskMemAlloc
StringFromCLSID
CoTaskMemFree
CoFreeUnusedLibraries
OleInitialize
CoGetMalloc
CLSIDFromProgID
CoRegisterMessageFilter
StgOpenStorageOnILockBytes
OleQueryLinkFromData
CoRevokeClassObject
CoRegisterClassObject
CoGetClassObject
OleFlushClipboard
OleUninitialize
oleaut32
SafeArrayGetDim
SafeArrayRedim
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayCreate
SafeArrayAllocData
SafeArrayAllocDescriptor
SysReAllocStringLen
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
SysStringLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen
SysFreeString
VariantTimeToSystemTime
SystemTimeToVariantTime
SafeArrayGetLBound
SafeArrayLock
SafeArrayGetUBound
SafeArrayUnlock
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayPutElement
SafeArrayCopy
SafeArrayPtrOfIndex
VariantCopy
VarDateFromStr
VarCyFromStr
VarBstrFromCy
VarBstrFromDate
VarBstrFromDec
VarDecFromStr
SafeArrayGetElemsize
SysAllocString
oledlg
ord8
gdiplus
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdiplusShutdown
GdipAlloc
GdipFree
GdipGetImagePixelFormat
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdiplusStartup
ws2_32
select
recv
inet_addr
htons
getpeername
socket
gethostname
gethostbyname
connect
closesocket
__WSAFDIsSet
WSASetLastError
send
WSAGetLastError
WSACleanup
getservbyname
WSAStartup
ioctlsocket
shutdown
inet_ntoa
oleacc
AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject
imm32
ImmReleaseContext
ImmGetContext
ImmGetOpenStatus
winmm
PlaySoundA
Sections
.text Size: 3.0MB - Virtual size: 3.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 673KB - Virtual size: 673KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 96KB - Virtual size: 268KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 246KB - Virtual size: 246KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ