4af7e5f3f623f3b6621de4f984580fda3277ff9b1373a32f70d248b196193830 | Triage

Sharing

General

Target

2024-08-19_210c99b24b5ec4cbb6854c5445cac4f5_magniber
Size

18.0MB
Sample

240819-fdmmnsvdla
MD5

210c99b24b5ec4cbb6854c5445cac4f5
SHA1

af11da1d2e63f9d652855d06c581e4b76cd3103f
SHA256

4af7e5f3f623f3b6621de4f984580fda3277ff9b1373a32f70d248b196193830
SHA512

779ebef569b13be5af367dde78d70cb9c6faab402541412ca92f1add41e3d42a3f5eee98d9133b90f31d469cabf2dc7783d642678145a4b7c9abc8c62adf2382
SSDEEP

393216:5fgdDs7nsF5ly+uleVqhb7ULBYCNvOcLAp7cN55lOfYq:Gds+lytdnULroY5LOfYq

Score

9^/10

discovery evasion

Malware Config

Targets

- Target
  
  2024-08-19_210c99b24b5ec4cbb6854c5445cac4f5_magniber
- Size
  
  18.0MB
- MD5
  
  210c99b24b5ec4cbb6854c5445cac4f5
- SHA1
  
  af11da1d2e63f9d652855d06c581e4b76cd3103f
- SHA256
  
  4af7e5f3f623f3b6621de4f984580fda3277ff9b1373a32f70d248b196193830
- SHA512
  
  779ebef569b13be5af367dde78d70cb9c6faab402541412ca92f1add41e3d42a3f5eee98d9133b90f31d469cabf2dc7783d642678145a4b7c9abc8c62adf2382
- SSDEEP
  
  393216:5fgdDs7nsF5ly+uleVqhb7ULBYCNvOcLAp7cN55lOfYq:Gds+lytdnULroY5LOfYq
Score

9^/10

discovery evasion
- Identifies VirtualBox via ACPI registry values (likely anti-VM)
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion