2024-06-15_27f971bc6d76b92623f3b953baea175e_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-15_27f971bc6d76b92623f3b953baea175e_magniber
Size

1.8MB
MD5

27f971bc6d76b92623f3b953baea175e
SHA1

a1eefc4226dbeab9bd7c475ee4c88bbff115e690
SHA256

79b71e4a643eb39e641cd9f7c0f27ed46d0f4fcaa50cdf80d4329bf9633f0741
SHA512

133eb227bf5d9fcba08e8831a1a9ab2e772dc855ff12281fc0ce12c2771bf23fd8ef8855d395c5deb4066c721dbcd0c58e21d8c84dae6d25e0b40c5a17a64543
SSDEEP

24576:sOEoIVixYQLEbXTBo1zB/h/RWAmThCs7ot:Ao5YzVKbiTYs74

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-15_27f971bc6d76b92623f3b953baea175e_magniber

Files

2024-06-15_27f971bc6d76b92623f3b953baea175e_magniber
.exe windows:6 windows x86 arch:x86

edb5d8f1a750a0bb3136083323deded2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

P:\Projects\FOCAL\Chaos\Win32\Release_Steam\Chaos.pdb

Imports

steam_api

SteamAPI_RestartAppIfNecessary
SteamAPI_Shutdown
SteamAPI_Init
SteamAPI_UnregisterCallResult
SteamAPI_RegisterCallResult
SteamAPI_RunCallbacks
SteamAPI_UnregisterCallback
SteamAPI_RegisterCallback
SteamInternal_FindOrCreateUserInterface
SteamInternal_ContextInit
SteamAPI_GetHSteamUser

d3dx9_43

D3DXVec3TransformCoord
D3DXVec3Transform
D3DXVec3TransformNormal
D3DXVec4Transform
D3DXMatrixTranspose
D3DXMatrixPerspectiveFovRH
D3DXMatrixLookAtRH
D3DXMatrixRotationAxis
D3DXMatrixRotationZ
D3DXMatrixRotationY
D3DXMatrixRotationX
D3DXMatrixTranslation
D3DXMatrixScaling
D3DXMatrixInverse
D3DXMatrixMultiply

dsound

ord1

winmm

timeBeginPeriod
timeEndPeriod
PlaySoundA
timeGetTime

dinput8

DirectInput8Create

xinput1_4

ord2
ord3
ord5

kernel32

FindNextFileW
FindNextFileA
FindFirstFileExW
FindFirstFileExA
FindClose
GetTimeZoneInformation
FlushFileBuffers
DeleteFileW
GetConsoleCP
CreateDirectoryW
EnumSystemLocalesW
IsValidCodePage
GetOEMCP
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetCPInfo
GetCommandLineW
GetTimeFormatW
GetDateFormatW
DecodePointer
SetFilePointerEx
Sleep
CreateThread
GetTickCount
QueryPerformanceCounter
QueryPerformanceFrequency
CloseHandle
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReleaseSemaphore
WaitForSingleObject
GetCurrentProcess
GetCurrentThread
GetProcessAffinityMask
SetThreadAffinityMask
CreateSemaphoreA
SetCurrentDirectoryA
CreateDirectoryA
OutputDebugStringA
CreateProcessA
GlobalAlloc
GetEnvironmentStringsW
GlobalUnlock
GetSystemDefaultUILanguage
GetCommandLineA
ContinueDebugEvent
WaitForDebugEvent
ReadProcessMemory
MultiByteToWideChar
WriteFile
GetStdHandle
WideCharToMultiByte
GetModuleFileNameW
GetModuleFileNameA
GetModuleHandleExW
ExitProcess
ReadFile
LoadLibraryExW
GetProcAddress
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
GetACP
SetLastError
GetLastError
InterlockedFlushSList
InterlockedPushEntrySList
RaiseException
EncodePointer
RtlUnwind
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapFree
HeapAlloc
GetStringTypeW
GetFileType
HeapReAlloc
GetConsoleMode
ReadConsoleW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
GetProcessHeap
SetConsoleCtrlHandler
OutputDebugStringW
WaitForSingleObjectEx
SetStdHandle
CreateFileW
WriteConsoleW
HeapSize
GlobalLock
SetEndOfFile

user32

SetWindowTextA
GetFocus
ShowCursor
MessageBoxW
LoadCursorA
LoadIconA
InvalidateRect
EndPaint
BeginPaint
ReleaseDC
GetDC
UpdateWindow
AppendMenuA
EnableMenuItem
CheckMenuItem
CreateMenu
KillTimer
SetTimer
MapVirtualKeyA
EmptyClipboard
GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
ShowWindow
CreateWindowExA
DefWindowProcA
PostMessageA
PeekMessageA
DispatchMessageA
TranslateMessage
MessageBoxA
GetMonitorInfoA
SetWindowLongA
AdjustWindowRect
GetWindowRect
GetClientRect
SetMenu
SetFocus
SetWindowPos
keybd_event
GetKeyState
RegisterClassA

gdi32

GetGlyphIndicesW
GetGlyphOutlineW
DeleteObject
DeleteDC
SelectObject
CreateCompatibleDC
CreateDIBSection
BitBlt
GetTextMetricsA
GetKerningPairsA
CreateFontIndirectW
StretchBlt

ole32

CoSetProxyBlanket
CoCreateInstance
CoInitialize
CoUninitialize

oleaut32

VariantInit
SysFreeString
SysAllocString
VariantClear

d3d9

Direct3DCreate9

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 447KB - Virtual size: 447KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 153KB - Virtual size: 14.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 212KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

edb5d8f1a750a0bb3136083323deded2

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

steam_api

d3dx9_43

dsound

winmm

dinput8

xinput1_4

kernel32

user32

gdi32

ole32

oleaut32

d3d9

Sections

.text Size: 1.0MB - Virtual size: 1.0MB

.rdata Size: 447KB - Virtual size: 447KB

.data Size: 153KB - Virtual size: 14.0MB

.gfids Size: 512B - Virtual size: 444B

_RDATA Size: 2KB - Virtual size: 1KB

.rsrc Size: 212KB - Virtual size: 212KB

.text
Size: 1.0MB - Virtual size: 1.0MB

.rdata
Size: 447KB - Virtual size: 447KB

.data
Size: 153KB - Virtual size: 14.0MB

.gfids
Size: 512B - Virtual size: 444B

_RDATA
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 212KB - Virtual size: 212KB