a41d1551191dd4c60e085fcdbf785f4743c0b521237672f0ece7b0b7a1055d2f | Triage

Sharing

General

Target

2024-05-26_c9e363b1250efebfa86b9520268ed355_magniber_revil
Size

5.7MB
Sample

240526-m8p5lsgh83
MD5

c9e363b1250efebfa86b9520268ed355
SHA1

dfe458c22410848b37fad2c19bd4dc9c4586be49
SHA256

a41d1551191dd4c60e085fcdbf785f4743c0b521237672f0ece7b0b7a1055d2f
SHA512

2b95c54ea351f6c6e8b008c6f21000915143a06f2b8190de433541aa1ee9d719b40bc2e30610fa5504b38710e20c4c7dcd1989356156abbc7661fd1244239b9e
SSDEEP

98304:j/6n94bDY2EBcBuq62V///4nAWakrn7S/IhWoaVVfs/VIsMF4JD8iulhq7Nm6kV9:mMD+cpvJ/4H3nmghWoa/fsysMF4JD85T

Score

9^/10

evasion

Malware Config

Targets

- Target
  
  2024-05-26_c9e363b1250efebfa86b9520268ed355_magniber_revil
- Size
  
  5.7MB
- MD5
  
  c9e363b1250efebfa86b9520268ed355
- SHA1
  
  dfe458c22410848b37fad2c19bd4dc9c4586be49
- SHA256
  
  a41d1551191dd4c60e085fcdbf785f4743c0b521237672f0ece7b0b7a1055d2f
- SHA512
  
  2b95c54ea351f6c6e8b008c6f21000915143a06f2b8190de433541aa1ee9d719b40bc2e30610fa5504b38710e20c4c7dcd1989356156abbc7661fd1244239b9e
- SSDEEP
  
  98304:j/6n94bDY2EBcBuq62V///4nAWakrn7S/IhWoaVVfs/VIsMF4JD8iulhq7Nm6kV9:mMD+cpvJ/4H3nmghWoa/fsysMF4JD85T
Score

9^/10

evasion
- Looks for VirtualBox Guest Additions in registry
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2