2024-06-26_53360286cd2d781beb6ab212c4e07220_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-26_53360286cd2d781beb6ab212c4e07220_magniber
Size

14.8MB
MD5

53360286cd2d781beb6ab212c4e07220
SHA1

240d13eab793a0b8196710c352dc59efecfa212f
SHA256

f058371fcb7f1fc67f766f1dd1c8cfe27965347e1d50a7c92ccaf68cda28661f
SHA512

6a61f02bdd89ef9b2a7389089183a0e1030998a53725d97fb831b8f273fa3608b4afb9c56bda0973485fba82a4622268f36216b53ae028c5c6b03d06b49f822f
SSDEEP

196608:2tyA5EKi4yJcQeGp4962GfvwLDAKXK+0zK88Dd7hDAul6xhz1xrXMO:2tKJ7Q96Pvw3AKXKhzK8+dhyDYO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-26_53360286cd2d781beb6ab212c4e07220_magniber

Files

2024-06-26_53360286cd2d781beb6ab212c4e07220_magniber
.exe windows:5 windows x86 arch:x86

87cff468140df3d576fbb3c87d3c1f00

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

api-ms-win-downlevel-shlwapi-l1-1-0

StrCSpnA

bass

BASS_ChannelBytes2Seconds
BASS_ChannelFlags
BASS_ChannelGetInfo
BASS_ChannelGetLength
BASS_ChannelGetPosition
BASS_ChannelIsActive
BASS_ChannelPause
BASS_ChannelPlay
BASS_ChannelSeconds2Bytes
BASS_ChannelSetAttribute
BASS_ChannelSetPosition
BASS_ChannelStop
BASS_ErrorGetCode
BASS_Free
BASS_GetVersion
BASS_Init
BASS_SampleFree
BASS_SampleGetChannel
BASS_SampleLoad
BASS_Stop
BASS_StreamCreateFile
BASS_StreamFree

d3d9

Direct3DCreate9

d3dx9_43

D3DXCompileShaderFromFileA
D3DXCreateTexture
D3DXCreateTextureFromFileInMemoryEx
D3DXMatrixMultiply
D3DXMatrixOrthoOffCenterLH
D3DXMatrixRotationZ
D3DXMatrixScaling
D3DXMatrixTranslation
D3DXSaveSurfaceToFileA

gdi32

GetStockObject

kernel32

CloseHandle
CompareStringA
CompareStringW
CopyFileA
CopyFileW
CreateDirectoryA
CreateDirectoryW
CreateEventA
CreateFileA
CreateFileMappingW
CreateFileW
CreateHardLinkA
CreateHardLinkW
CreatePipe
CreateProcessA
CreateThread
DeleteCriticalSection
DeleteFileA
DeleteFileW
DuplicateHandle
EnterCriticalSection
EnumSystemLocalesA
ExitProcess
FatalAppExitA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetComputerNameA
GetConsoleCP
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryA
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatA
GetDiskFreeSpaceExA
GetDiskFreeSpaceExW
GetDriveTypeA
GetEnvironmentStrings
GetEnvironmentStringsW
GetExitCodeProcess
GetFileAttributesA
GetFileAttributesExA
GetFileAttributesExW
GetFileAttributesW
GetFileInformationByHandle
GetFileSize
GetFileSizeEx
GetFileTime
GetFileType
GetFullPathNameA
GetFullPathNameW
GetLastError
GetLocalTime
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetModuleHandleA
GetModuleHandleW
GetOEMCP
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
GetShortPathNameA
GetShortPathNameW
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemTimeAsFileTime
GetThreadTimes
GetTickCount
GetTimeFormatA
GetTimeZoneInformation
GetUserDefaultLCID
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDebuggerPresent
IsValidCodePage
IsValidLocale
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LocalFree
MapViewOfFile
MoveFileA
MoveFileW
MultiByteToWideChar
OpenProcess
PeekNamedPipe
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadFile
RemoveDirectoryA
RemoveDirectoryW
ResumeThread
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetEvent
SetFilePointer
SetFileTime
SetHandleCount
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
Sleep
SuspendThread
TerminateProcess
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualProtectEx
VirtualQueryEx
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
WritePrivateProfileStringA
lstrcmp
lstrcpyn
lstrlen

setupapi

SetupDiEnumDeviceInfo
SetupDiGetClassDevsExA
SetupDiGetDeviceRegistryPropertyA
SetupDiOpenDevRegKey

shell32

SHGetFolderPathA
SHGetSpecialFolderPathA
ShellExecuteA

user32

BeginPaint
CallNextHookEx
ClientToScreen
CreateWindowExW
DefWindowProcW
DestroyWindow
DispatchMessageA
EndPaint
EnumDisplayDevicesA
EnumDisplaySettingsA
FillRect
GetAsyncKeyState
GetClientRect
GetCursorPos
GetForegroundWindow
GetKeyState
GetKeyboardState
GetSystemMetrics
GetWindowLongA
LoadCursorA
LoadIconA
MapWindowPoints
MessageBoxA
MessageBoxW
PeekMessageA
PostQuitMessage
PtInRect
RegisterClassW
ReleaseCapture
ScreenToClient
SendInput
SendMessageA
SetCapture
SetClassLongA
SetCursor
SetCursorPos
SetFocus
SetWindowLongA
SetWindowPos
SetWindowTextW
SetWindowsHookExA
ShowWindow
SystemParametersInfoA
ToAscii
UnhookWindowsHookEx
UnregisterClassW
WindowFromPoint

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime

ws2_32

htonl
htons

wtsapi32

WTSRegisterSessionNotification

Sections

.text
Size: 4.1MB - Virtual size: 4.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 552KB - Virtual size: 552KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 704KB - Virtual size: 704KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 6.6MB - Virtual size: 6.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Geddon
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

87cff468140df3d576fbb3c87d3c1f00

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

api-ms-win-downlevel-shlwapi-l1-1-0

bass

d3d9

d3dx9_43

gdi32

kernel32

setupapi

shell32

user32

winmm

ws2_32

wtsapi32

Sections

.text Size: 4.1MB - Virtual size: 4.1MB

.rdata Size: 1.3MB - Virtual size: 1.3MB

.data Size: 552KB - Virtual size: 552KB

.text1 Size: 704KB - Virtual size: 704KB

.adata Size: 64KB - Virtual size: 64KB

.data1 Size: 192KB - Virtual size: 192KB

.pdata Size: 6.6MB - Virtual size: 6.6MB

.rsrc Size: 1.3MB - Virtual size: 1.3MB

.Geddon Size: 8KB - Virtual size: 8KB

.text
Size: 4.1MB - Virtual size: 4.1MB

.rdata
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 552KB - Virtual size: 552KB

.text1
Size: 704KB - Virtual size: 704KB

.adata
Size: 64KB - Virtual size: 64KB

.data1
Size: 192KB - Virtual size: 192KB

.pdata
Size: 6.6MB - Virtual size: 6.6MB

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

.Geddon
Size: 8KB - Virtual size: 8KB