D:\默默\0515\默默8.0登录器\Release\Logon.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-09-02_2598f915812567d71aad56cb0609e731_magniber.exe
Resource
win7-20240705-en
windows7-x64
9 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-09-02_2598f915812567d71aad56cb0609e731_magniber.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
4 signatures
150 seconds
General
-
Target
2024-09-02_2598f915812567d71aad56cb0609e731_magniber
-
Size
11.4MB
-
MD5
2598f915812567d71aad56cb0609e731
-
SHA1
0aed29ed4377405b60b2b05ff5471dd0e9d1b541
-
SHA256
a7d9722eefe26761f3cdda37255b4956e6bbbbbe89bc1f0a9eadd9ec742c2c9b
-
SHA512
12f9e406b707b2c881401676907eea17a95a9b2d79f2960ca1569efdc1bfc92444b32797f1ae38e8bb30e3f49c1dc4205ad3e02b97e8883f7105256d87cf3c4c
-
SSDEEP
196608:ETmmeMf7AA9HW0Ol52ZcKU4nRIVIrz+UBuaNkDa0nyHR7UYpGOW1e9+P4kd:tA920zR8IpuokDdyHVUIGiI4kd
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-09-02_2598f915812567d71aad56cb0609e731_magniber
Files
-
2024-09-02_2598f915812567d71aad56cb0609e731_magniber.exe windows:6 windows x86 arch:x86
3fd69fead59c8e090e177354c5c74682
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
FileTimeToSystemTime
UnmapViewOfFile
GetLocalTime
GetFileInformationByHandle
SystemTimeToFileTime
SetFileTime
SetFilePointer
LocalFileTimeToFileTime
GetFileAttributesA
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
RaiseException
DecodePointer
OpenFileMappingA
CreateFileMappingA
MapViewOfFile
Module32Next
Module32First
lstrcmpA
LocalFree
VirtualAllocEx
CreateRemoteThread
Process32Next
Process32First
CreateToolhelp32Snapshot
MultiByteToWideChar
MoveFileExA
CopyFileA
FindResourceA
lstrlenA
lstrcpyA
WinExec
GetTickCount
CreateProcessA
TerminateProcess
GetCurrentProcessId
GetCurrentProcess
Beep
GetTempPathA
WriteFile
SetFileAttributesA
RemoveDirectoryA
ReadFile
GetFileSize
CreateFileA
CreateDirectoryA
SetCurrentDirectoryA
WaitForSingleObject
CloseHandle
DeleteFileA
GetCommandLineW
GetModuleFileNameA
GetLogicalDrives
GetDriveTypeA
GetCurrentDirectoryA
WriteProcessMemory
ReadProcessMemory
OpenProcess
CreateThread
Sleep
OutputDebugStringA
GetProcAddress
GetModuleHandleA
GetLastError
WideCharToMultiByte
WriteConsoleW
GetCurrentDirectoryW
SetCurrentDirectoryW
CreateFileW
SetConsoleCtrlHandler
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsValidCodePage
FindNextFileW
FindFirstFileExW
GetTimeZoneInformation
GetDriveTypeW
ReadConsoleW
GetConsoleMode
GetConsoleOutputCP
GetFileAttributesExW
EnumSystemLocalesW
IsValidLocale
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetTempPathW
SetFilePointerEx
GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
HeapQueryInformation
GetCommandLineA
FreeLibraryAndExitThread
ExitThread
GetFullPathNameW
VirtualQuery
VirtualAlloc
GetSystemInfo
GetModuleHandleExW
ExitProcess
InterlockedFlushSList
InterlockedPushEntrySList
RtlUnwind
CompareStringEx
GetStringTypeW
GetLocaleInfoEx
LCMapStringEx
OutputDebugStringW
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
CreateEventW
WaitForSingleObjectEx
ResetEvent
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LocalUnlock
FindResourceW
SizeofResource
LockResource
LoadResource
SetLastError
GlobalAlloc
GlobalSize
GlobalUnlock
GlobalLock
GlobalFree
MulDiv
FormatMessageA
EncodePointer
GetCurrentThreadId
GetSystemDirectoryW
FreeLibrary
GetModuleFileNameW
GetModuleHandleW
LoadLibraryExW
LoadLibraryA
LoadLibraryW
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomA
GlobalFindAtomA
GlobalGetAtomNameA
CompareStringA
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
SystemTimeToTzSpecificLocalTime
InitializeCriticalSectionAndSpinCount
SetEvent
CreateEventA
SetThreadPriority
SuspendThread
ResumeThread
GetCurrentThread
GetVersionExA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
FlushFileBuffers
GetFullPathNameA
LockFile
SetEndOfFile
UnlockFile
GetVolumeInformationA
DuplicateHandle
LoadLibraryExA
GetShortPathNameA
lstrcmpiA
MoveFileA
GetThreadLocale
GetStringTypeExA
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GetAtomNameA
GetACP
GlobalFlags
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
GetOEMCP
GetCPInfo
GetFileAttributesExA
GetFileSizeEx
GetFileTime
GetDiskFreeSpaceA
GetTempFileNameA
ReplaceFileA
GetUserDefaultLCID
VerSetConditionMask
VerifyVersionInfoA
SetErrorMode
GetWindowsDirectoryA
FindResourceExW
SearchPathA
GetProfileIntA
LocalLock
user32
CallWindowProcA
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
IsMenu
IsChild
DestroyWindow
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetDlgItem
GetDlgCtrlID
SetFocus
GetKeyState
GetCapture
GetMenu
SetMenu
UpdateWindow
SetActiveWindow
GetForegroundWindow
BeginPaint
EndPaint
ValidateRect
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetPropA
GetPropA
RemovePropA
GetWindowTextLengthA
ScreenToClient
MapWindowPoints
EqualRect
PtInRect
GetClassLongA
GetTopWindow
GetLastActivePopup
GetWindow
SetWindowsHookExA
UnhookWindowsHookEx
SetScrollInfo
GetScrollInfo
WinHelpA
MonitorFromWindow
GetMonitorInfoA
ShowWindow
MoveWindow
SetDlgItemInt
GetDlgItemInt
SetDlgItemTextA
GetDlgItemTextA
CheckDlgButton
CheckRadioButton
IsDlgButtonChecked
IsWindowEnabled
ScrollWindowEx
SetWindowTextA
IsDialogMessageA
CreateDialogIndirectParamA
EndDialog
LoadBitmapA
IntersectRect
WaitMessage
SetTimer
KillTimer
SetCapture
ReleaseCapture
IsRectEmpty
SystemParametersInfoA
GetMessageA
TranslateMessage
ShowOwnedPopups
RegisterClipboardFormatA
SetWindowContextHelpId
MapDialogRect
GetMenuItemInfoA
BringWindowToTop
LoadAcceleratorsA
TranslateAcceleratorA
InsertMenuItemA
GetMenuBarInfo
UnpackDDElParam
ReuseDDElParam
IsZoomed
GetKeyNameTextA
MapVirtualKeyA
CharUpperA
GetSysColorBrush
LoadCursorA
GetMessageTime
LoadImageW
RealChildWindowFromPoint
CopyImage
GetAsyncKeyState
GetDialogBaseUnits
CharNextA
CopyAcceleratorTableA
InvalidateRgn
SetRect
DeleteMenu
PostThreadMessageA
GetNextDlgGroupItem
MessageBeep
UnionRect
GetSystemMenu
SetParent
LoadMenuW
NotifyWinEvent
GetMenuDefaultItem
SetMenuDefaultItem
UpdateLayeredWindow
EnableScrollBar
MonitorFromPoint
SetLayeredWindowAttributes
EnumDisplayMonitors
DrawIconEx
HideCaret
InvertRect
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
SetClassLongA
DrawEdge
DrawFrameControl
CopyIcon
LoadAcceleratorsW
GetDCEx
LockWindowUpdate
CharUpperBuffA
ModifyMenuA
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
CreateAcceleratorTableA
DestroyAcceleratorTable
GetComboBoxInfo
IsCharLowerA
MapVirtualKeyExA
GetDoubleClickTime
IsClipboardFormatAvailable
GetUpdateRect
MonitorFromRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
EnumChildWindows
SendNotifyMessageA
InSendMessage
WindowFromDC
CreateMenu
SubtractRect
GetWindowRgn
GetTabbedTextExtentA
GetTabbedTextExtentW
GetMessagePos
DispatchMessageA
RegisterWindowMessageA
LoadBitmapW
SendMessageA
SetWindowPos
EnableWindow
SetCursor
PostMessageA
GetWindowDC
ReleaseDC
SetWindowRgn
InvalidateRect
GetClientRect
GetWindowRect
LoadImageA
GetNextDlgTabItem
GetActiveWindow
LoadMenuA
DestroyMenu
GetSubMenu
TrackPopupMenuEx
DrawStateA
GetDC
ClientToScreen
WindowFromPoint
GetSysColor
DrawFocusRect
FillRect
FrameRect
CopyRect
DefWindowProcA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
InflateRect
CheckMenuItem
SetRectEmpty
SendDlgItemMessageA
OffsetRect
GetWindowLongA
GetParent
RemoveMenu
DestroyCursor
DestroyIcon
CreateIconIndirect
GetIconInfo
IsWindow
RedrawWindow
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetMenuState
GetMenuStringA
TrackMouseEvent
SetWindowLongA
GetDesktopWindow
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
UnregisterClassA
PostQuitMessage
PeekMessageA
CreateIconFromResource
LoadIconW
LoadIconA
LoadCursorW
CallNextHookEx
GetClassNameA
EnumWindows
GetCursorPos
GetWindowTextA
SetForegroundWindow
DrawIcon
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
IsIconic
ShowWindowAsync
wsprintfA
AdjustWindowRectEx
MessageBoxA
GetFocus
GetWindowThreadProcessId
FindWindowA
SetCursorPos
SendInput
keybd_event
gdi32
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SelectPalette
SaveDC
ExtSelectClipRgn
StartDocA
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
MoveToEx
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
SetColorAdjustment
RestoreDC
PlayMetaFile
OffsetClipRgn
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetObjectType
GetCurrentPositionEx
GetClipRgn
GetClipBox
ExcludeClipRect
CreateSolidBrush
ExtTextOutA
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateDIBPatternBrushPt
GetDeviceCaps
CreateDCA
CopyMetaFileA
Escape
PtVisible
RectVisible
CreateRectRgn
SelectClipRgn
GetTextFaceA
GetTextExtentPoint32W
GetTextExtentPointA
GetTextAlign
GetStretchBltMode
GetPolyFillMode
GetNearestColor
GetBkMode
GetROP2
SetPixelV
SetAbortProc
AbortDoc
EndPage
StartPage
EndDoc
DeleteMetaFile
CreateMetaFileA
CloseMetaFile
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
RoundRect
SetPaletteEntries
ExtFloodFill
Rectangle
GetCurrentObject
OffsetRgn
EnumFontFamiliesExA
Polyline
Polygon
CreatePolygonRgn
SetDIBColorTable
RealizePalette
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
GetTextCharsetInfo
EnumFontFamiliesA
CreateDIBitmap
CreateRoundRectRgn
StretchDIBits
GetCharWidthA
CreateFontA
GetRgnBox
GetTextColor
GetTextMetricsA
GetTextExtentPoint32A
LPtoDP
CreateDIBSection
Ellipse
CreateEllipticRgn
DPtoLP
SetRectRgn
PatBlt
GetMapMode
CreateRectRgnIndirect
CreateFontIndirectA
ScaleWindowExtEx
BitBlt
CombineRgn
CreateCompatibleBitmap
CreateCompatibleDC
SetTextColor
DeleteObject
GetBkColor
GetDIBits
SelectObject
StretchBlt
GetObjectA
CreateBitmap
DeleteDC
GetPixel
GetStockObject
SetBkColor
SetPixel
TextOutA
advapi32
IsTextUnicode
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyA
RegQueryValueA
RegOpenKeyExW
SetFileSecurityA
GetFileSecurityA
RegEnumValueA
RegEnumKeyExA
RegCreateKeyA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA
SetEntriesInAclA
SetSecurityInfo
BuildExplicitAccessWithNameA
RegSetValueA
shell32
SHBrowseForFolderA
SHGetMalloc
SHAppBarMessage
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListA
ExtractIconA
CommandLineToArgvW
ShellExecuteA
Shell_NotifyIconA
SHGetSpecialFolderPathA
SHAddToRecentDocs
ShellExecuteExA
SHGetFileInfoA
DragFinish
DragQueryFileA
ole32
CoRegisterMessageFilter
OleRun
CoInitializeEx
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleSetMenuDescriptor
OleLockRunning
StgCreateDocfile
StgOpenStorage
StgIsStorageFile
CreateFileMoniker
OleRegGetMiscStatus
OleRegEnumVerbs
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
WriteClassStm
GetHGlobalFromILockBytes
CreateGenericComposite
CreateItemMoniker
OleCreate
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreateLinkToFile
OleCreateFromFile
OleLoad
OleSave
OleSaveToStream
OleSetContainedObject
OleGetIconOfClass
CreateDataAdviseHolder
CreateOleAdviseHolder
OleIsCurrentClipboard
OleIsRunning
CoGetMalloc
OleQueryLinkFromData
OleQueryCreateFromData
OleSetClipboard
CoRevokeClassObject
CoRegisterClassObject
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
PropVariantCopy
CoDisconnectObject
StringFromGUID2
CLSIDFromProgID
CLSIDFromString
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoCreateGuid
OleDraw
CreateStreamOnHGlobal
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
CreateBindCtx
CoTreatAsClass
WriteClassStg
ReadClassStg
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
CoUninitialize
CoCreateInstance
CoInitialize
GetRunningObjectTable
OleFlushClipboard
oleaut32
VarBstrFromCy
VarCyFromStr
VarDateFromStr
VariantCopy
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayRedim
VarBstrFromDate
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayCreate
SafeArrayAllocData
SafeArrayAllocDescriptor
SysReAllocStringLen
SysStringLen
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
SysAllocString
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen
SysFreeString
VarBstrFromDec
SystemTimeToVariantTime
VariantTimeToSystemTime
VarDecFromStr
OleCreateFontIndirect
SafeArrayDestroy
SafeArrayCreateVector
msimg32
AlphaBlend
TransparentBlt
comctl32
_TrackMouseEvent
shlwapi
StrFormatKBSizeA
PathRemoveFileSpecW
PathFindFileNameA
PathFindExtensionA
PathFileExistsA
PathStripToRootA
PathIsUNCA
PathRemoveExtensionA
uxtheme
GetThemeSysColor
GetWindowTheme
GetCurrentThemeName
GetThemeColor
GetThemePartSize
CloseThemeData
OpenThemeData
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeBackground
IsAppThemed
DrawThemeText
oledlg
ord8
urlmon
URLDownloadToFileA
gdiplus
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdipCreateFromHDC
GdipFree
GdipAlloc
GdiplusShutdown
GdipCreateBitmapFromHBITMAP
GdipSetInterpolationMode
GdipDrawImageRectI
GdipDrawImageI
GdiplusStartup
winmm
PlaySoundA
ws2_32
WSAStartup
WSACleanup
WSAGetLastError
accept
bind
getpeername
closesocket
socket
htonl
ntohs
recvfrom
select
send
sendto
WSASetLastError
WSAAsyncSelect
inet_ntoa
inet_addr
htons
recv
ntohl
gethostbyname
getsockname
connect
wininet
InternetOpenUrlA
InternetGetConnectedState
InternetReadFile
HttpQueryInfoA
HttpSendRequestA
InternetSetOptionA
HttpOpenRequestA
InternetCloseHandle
DeleteUrlCacheEntry
InternetOpenA
InternetConnectA
version
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
oleacc
LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject
imm32
ImmReleaseContext
ImmGetOpenStatus
ImmGetContext
winspool.drv
OpenPrinterA
DocumentPropertiesA
ClosePrinter
GetJobA
Sections
.text Size: 2.7MB - Virtual size: 2.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 618KB - Virtual size: 617KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 73KB - Virtual size: 144KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7.8MB - Virtual size: 7.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 221KB - Virtual size: 220KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ