Overview

overview

10

Static

static

1

2024-07-10...er.exe

windows7-x64

10

2024-07-10...er.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-07-10_47226cffd7a6f47d581d71bfc76d9bb4_magniber

  • Size

    13.7MB

  • Sample

    240710-sw1cpsxfqe

  • MD5

    47226cffd7a6f47d581d71bfc76d9bb4

  • SHA1

    d56a4df1de567d94eaded6c31fa9924fda266b86

  • SHA256

    5ca833e3d6d7421518eaa6354338cdeb95834be3165cd9f7e8f7a7777679c463

  • SHA512

    e4e3550861cee3186ec65bfef1328a138c56bdfbaede822ca9c3814fe662c371224bc807155732139543aa0b4866f0abd73ad2bfbb4db31f1d7f1c527177a612

  • SSDEEP

    196608:qrmKsB38Vw1cv7YPgiTXPt5jO5ZeEje+f466+xMdbL5KWeEPoZjWscXvU5Hw:qrmKz/GgizPzjOSYn5xMNLDwxWsc

Score
10/10
banloaddownloaderdropperevasiontrojan

Malware Config

Targets

    • Target

      2024-07-10_47226cffd7a6f47d581d71bfc76d9bb4_magniber

    • Size

      13.7MB

    • MD5

      47226cffd7a6f47d581d71bfc76d9bb4

    • SHA1

      d56a4df1de567d94eaded6c31fa9924fda266b86

    • SHA256

      5ca833e3d6d7421518eaa6354338cdeb95834be3165cd9f7e8f7a7777679c463

    • SHA512

      e4e3550861cee3186ec65bfef1328a138c56bdfbaede822ca9c3814fe662c371224bc807155732139543aa0b4866f0abd73ad2bfbb4db31f1d7f1c527177a612

    • SSDEEP

      196608:qrmKsB38Vw1cv7YPgiTXPt5jO5ZeEje+f466+xMdbL5KWeEPoZjWscXvU5Hw:qrmKz/GgizPzjOSYn5xMNLDwxWsc

    Score
    10/10
    banloaddownloaderdropperevasiontrojan

    • Banload

      Banload variants download malicious files, then install and execute the files.

      trojandropperdownloaderbanload

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks