General
-
Target
2024-07-04_dd85c2c2740e9b26ba58d694bc5dfc76_magniber
-
Size
9.9MB
-
Sample
240704-a82r7axbpb
-
MD5
dd85c2c2740e9b26ba58d694bc5dfc76
-
SHA1
ddd91cb1e481ee9dcf80921875791aff40865a88
-
SHA256
6590dc32caebdbff8a922f90d5d23aa827192daae79ae398c351404436495143
-
SHA512
7afee25f7e2f994bd04437ceb27e336c9b380f303c5c0602f437d4fc9845bb9b04320d8c400b6c18c1ef700857af38166218f9e977fa9d1dc31c4cc87212b6e2
-
SSDEEP
196608:TaetdpmxiHUbVaw5zph8qU9m/zmtseRML2l3hDHaI6HMaJTtGb/ki00Sv5TiK/nR:Gmf+iHoT5P8SzaD8lpiK/YBNENa2
Static task
static1
Behavioral task
behavioral1
Sample
2024-07-04_dd85c2c2740e9b26ba58d694bc5dfc76_magniber.exe
Resource
win7-20240611-en
Malware Config
Targets
-
-
Target
2024-07-04_dd85c2c2740e9b26ba58d694bc5dfc76_magniber
-
Size
9.9MB
-
MD5
dd85c2c2740e9b26ba58d694bc5dfc76
-
SHA1
ddd91cb1e481ee9dcf80921875791aff40865a88
-
SHA256
6590dc32caebdbff8a922f90d5d23aa827192daae79ae398c351404436495143
-
SHA512
7afee25f7e2f994bd04437ceb27e336c9b380f303c5c0602f437d4fc9845bb9b04320d8c400b6c18c1ef700857af38166218f9e977fa9d1dc31c4cc87212b6e2
-
SSDEEP
196608:TaetdpmxiHUbVaw5zph8qU9m/zmtseRML2l3hDHaI6HMaJTtGb/ki00Sv5TiK/nR:Gmf+iHoT5P8SzaD8lpiK/YBNENa2
-
SectopRAT payload
-
Drops startup file
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Suspicious use of SetThreadContext
-