2024-07-05_f8481c47df08c3ac9fe01c55479493e6_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-05_f8481c47df08c3ac9fe01c55479493e6_magniber
Size

20.5MB
MD5

f8481c47df08c3ac9fe01c55479493e6
SHA1

c23f88d2f0eb9b35ef1825b9702334ffd4084f17
SHA256

33df7f85437e0c35e9685b254ad02ce75d9a58c691d26621c17c9d9d3e3d9f5f
SHA512

8905e4c623de7f00ca381bf9c7c3c4e11da0f9b88fd5e192b5337e5c4467c0c98d2509e723065e62a3bbea9d50244cb2ec5ea2edb794fa9761d1a0502e0c379d
SSDEEP

393216:YCsawd9SC+syNmNeOknp6X2nXmNSivfPKm0+nkfUqIxKtpYIfiUzSJgG:YZ3SlBNmo5nprnX8JfS6kfyxKtCIfil

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-07-05_f8481c47df08c3ac9fe01c55479493e6_magniber

Files

2024-07-05_f8481c47df08c3ac9fe01c55479493e6_magniber
.exe windows:6 windows x86 arch:x86

e3b3251d0556408146f9597904b1a4a5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetFolderPathW
DuplicateIcon
ShellExecuteExW
ExtractIconExW

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

wsock32

socket
connect
send
ioctlsocket
htonl
htons
ntohl
select
recv
WSAStartup
gethostbyname

gdiplus

GdipSetSmoothingMode
GdipSetCompositingQuality
GdipDeleteGraphics
GdipCreateFromHDC
GdipDisposeImage
GdipCloneBrush
GdipDeleteBrush
GdipAlloc
GdipFree
GdiplusShutdown
GdiplusStartup
GdipDrawImageRectI
GdipLoadImageFromStream
GdipCloneImage
GdipGetImageBounds
GdipCreateSolidFill

kernel32

EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
lstrlenW
Sleep
SetLastError
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
RaiseException
DeleteCriticalSection
GetLastError
InitializeCriticalSectionAndSpinCount
ResetEvent
WaitForSingleObject
GlobalUnlock
GlobalFree
MulDiv
DecodePointer
GetCommandLineW
GetLongPathNameW
GetModuleFileNameW
GetTempPathW
CreateMutexW
CreateEventW
CloseHandle
CreateThread
GetProcAddress
LocalFree
GetCurrentProcessId
GetModuleHandleW
SizeofResource
CreateFileW
GetFileAttributesW
LockResource
QueryPerformanceFrequency
LoadResource
FindResourceW
GetWindowsDirectoryW
FreeLibrary
QueryPerformanceCounter
LoadLibraryExW
MultiByteToWideChar
WideCharToMultiByte
InitializeCriticalSectionEx
GlobalAlloc
GlobalLock
FileTimeToSystemTime
FileTimeToLocalFileTime
SystemTimeToFileTime
GetDateFormatW
GetVolumeInformationW
DeviceIoControl
GetVersionExW
LoadLibraryW
GlobalReAlloc
HeapReAlloc
TlsFree
TlsAlloc
GetSystemDirectoryW
GetProcessHeap
CompareStringW
SetFilePointerEx
GetFileSizeEx
GetConsoleMode
GetConsoleOutputCP
WriteFile
GetStdHandle
ExitProcess
GetTimeZoneInformation
PeekNamedPipe
GetFileType
GetFileInformationByHandle
CreateDirectoryW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetEnvironmentVariableW
GetFullPathNameW
GetDriveTypeW
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
RemoveDirectoryW
DeleteFileW
SystemTimeToTzSpecificLocalTime
FindNextFileW
FindFirstFileExW
FindClose
GetFileAttributesExW
GetCommandLineA
TlsSetValue
RtlUnwind
GetStartupInfoW
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
GetSystemTimeAsFileTime
LCMapStringEx
SleepConditionVariableSRW
WakeAllConditionVariable
GetStringTypeW
TryAcquireSRWLockExclusive
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
ReadFile
ReadConsoleW
InitializeSListHead
SetStdHandle
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
HeapSize
FreeEnvironmentStringsW
FlushFileBuffers
SetEndOfFile
WriteConsoleW
GetSystemTime
HeapFree
HeapAlloc
TlsGetValue
OutputDebugStringW
IsDebuggerPresent
LoadLibraryExA
VirtualFree
VirtualAlloc
InterlockedPopEntrySList
InterlockedPushEntrySList
GetCurrentProcess
FlushInstructionCache
IsProcessorFeaturePresent
EncodePointer

user32

MessageBoxW
SendMessageW
GetDC
GetClientRect
MoveWindow
SetWindowTextW
GetWindowRect
ScreenToClient
CreateWindowExW
EndDialog
DefWindowProcW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
UnhookWindowsHookEx
SetWindowsHookExW
CallNextHookEx
GetAsyncKeyState
GetDialogBaseUnits
SetTimer
HideCaret
EndPaint
BeginPaint
GetDlgCtrlID
SetForegroundWindow
GetSystemMetrics
ClientToScreen
KillTimer
EnumWindows
GetClassNameW
GetWindowThreadProcessId
PostMessageW
FindWindowW
PostThreadMessageW
DialogBoxParamW
CallWindowProcW
LoadCursorW
GetClassInfoExW
RegisterClassExW
RedrawWindow
ReleaseDC
GetWindowDC
FillRect
GetMessageW
DialogBoxIndirectParamW
DestroyIcon
GetActiveWindow
GetWindowTextW
SetFocus
CreateDialogParamW
UnregisterClassW
DestroyWindow
GetWindow
GetWindowLongW
MonitorFromWindow
GetMonitorInfoW
GetParent
MapWindowPoints
SetWindowPos
DispatchMessageW
InvalidateRect
ShowWindow
PeekMessageW
UpdateWindow
IsWindow
SetWindowLongW

gdi32

SetBkColor
GetStockObject
SelectObject
CreateSolidBrush
CreateFontIndirectW
GetDeviceCaps
CreateFontW
DeleteDC
DeleteObject
GetTextExtentPoint32W

comdlg32

GetSaveFileNameW

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExW
RegCloseKey
RegOpenKeyExW
IsTextUnicode

ole32

CoInitializeSecurity
CoSetProxyBlanket
CreateStreamOnHGlobal
CoInitialize
CLSIDFromProgID
CLSIDFromString
CoUninitialize
CoCreateInstance

oleaut32

OleLoadPicture
VariantChangeType
SysStringLen
VariantClear
VariantCopy
SysAllocStringByteLen
SysStringByteLen
SysFreeString
CreateErrorInfo
SysAllocString
VariantInit

Sections

.text
Size: 590KB - Virtual size: 589KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19.7MB - Virtual size: 19.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e3b3251d0556408146f9597904b1a4a5

Headers

DLL Characteristics

File Characteristics

Imports

shell32

version

wsock32

gdiplus

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

Sections

.text Size: 590KB - Virtual size: 589KB

.rdata Size: 148KB - Virtual size: 147KB

.data Size: 27KB - Virtual size: 172KB

.rsrc Size: 19.7MB - Virtual size: 19.7MB

.reloc Size: 30KB - Virtual size: 30KB

.text
Size: 590KB - Virtual size: 589KB

.rdata
Size: 148KB - Virtual size: 147KB

.data
Size: 27KB - Virtual size: 172KB

.rsrc
Size: 19.7MB - Virtual size: 19.7MB

.reloc
Size: 30KB - Virtual size: 30KB