General

  • Target

    2024-06-14_69cffefaf0d6d296dbba07e765d97dda_magniber

  • Size

    43.5MB

  • Sample

    240614-yl7xpatcmf

  • MD5

    69cffefaf0d6d296dbba07e765d97dda

  • SHA1

    8b58a62437460a53a9bd3e3b9f74ac9356e5eef1

  • SHA256

    9639167d8a1722586b044622e56caa0602044594e39ade87c0d5c18820b3cecb

  • SHA512

    3ccc4e9b78c6f610707ed4827d4df69b8eabd1d4a341c37341d2748a33b544ae575ca9275270828eadfeeabdf6e101e7f88ed176562f3bf8e39586b38a2625a5

  • SSDEEP

    786432:xwvnIe84yEZwcCUmeaeYzeyChA/tQ1/BJ754U/Hz4gQ7sCZzEECamVX8m:xwvn7yBVea3zFCK/8J75RvzZ6EEgVV

Malware Config

Targets

    • Target

      2024-06-14_69cffefaf0d6d296dbba07e765d97dda_magniber

    • Size

      43.5MB

    • MD5

      69cffefaf0d6d296dbba07e765d97dda

    • SHA1

      8b58a62437460a53a9bd3e3b9f74ac9356e5eef1

    • SHA256

      9639167d8a1722586b044622e56caa0602044594e39ade87c0d5c18820b3cecb

    • SHA512

      3ccc4e9b78c6f610707ed4827d4df69b8eabd1d4a341c37341d2748a33b544ae575ca9275270828eadfeeabdf6e101e7f88ed176562f3bf8e39586b38a2625a5

    • SSDEEP

      786432:xwvnIe84yEZwcCUmeaeYzeyChA/tQ1/BJ754U/Hz4gQ7sCZzEECamVX8m:xwvn7yBVea3zFCK/8J75RvzZ6EEgVV

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

Tasks