67c13a9716ec1c4ddad368e4c9ec261966df1299c046daa799514b49894b4a95 | Triage

Sharing

General

Target

2024-05-24_9daa5f92264936382b1ceed79b66a6da_magniber_revil
Size

5.7MB
Sample

240524-da27vaae7t
MD5

9daa5f92264936382b1ceed79b66a6da
SHA1

ffc5c85ae427cb3e82dc72481bb3eeda9504a591
SHA256

67c13a9716ec1c4ddad368e4c9ec261966df1299c046daa799514b49894b4a95
SHA512

efe5de3eb52e33443990137228b1ee04b55b106fa7cb2783cbcd00843f33a0f5ab5279883b86f8c2d1b9e388953e48076992fd369b47a83a55f7d5a8fc8e8402
SSDEEP

98304:j/6n94bDY2EBcBuq62V///4nAWakrn7S/IhWoaVVfs/VIsMF4JD8iulhq7Nm2kVm:mMD+cpvJ/4H3nmghWoa/fsysMF4JD85M

Score

9^/10

evasion

Malware Config

Targets

- Target
  
  2024-05-24_9daa5f92264936382b1ceed79b66a6da_magniber_revil
- Size
  
  5.7MB
- MD5
  
  9daa5f92264936382b1ceed79b66a6da
- SHA1
  
  ffc5c85ae427cb3e82dc72481bb3eeda9504a591
- SHA256
  
  67c13a9716ec1c4ddad368e4c9ec261966df1299c046daa799514b49894b4a95
- SHA512
  
  efe5de3eb52e33443990137228b1ee04b55b106fa7cb2783cbcd00843f33a0f5ab5279883b86f8c2d1b9e388953e48076992fd369b47a83a55f7d5a8fc8e8402
- SSDEEP
  
  98304:j/6n94bDY2EBcBuq62V///4nAWakrn7S/IhWoaVVfs/VIsMF4JD8iulhq7Nm2kVm:mMD+cpvJ/4H3nmghWoa/fsysMF4JD85M
Score

9^/10

evasion
- Looks for VirtualBox Guest Additions in registry
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2