2024-09-08_e8a5fc852c57b4a0cc41410522b10aae_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-08_e8a5fc852c57b4a0cc41410522b10aae_magniber
Size

6.2MB
MD5

e8a5fc852c57b4a0cc41410522b10aae
SHA1

b3e1de7a10822accdd687753c52f53f5b2fe0d45
SHA256

3d546ba1c7cbc90f789db709bc14b22627c09a5bb8422c500bfeeffdbc9ccbac
SHA512

0722433b1302c8d240541a9a428aa2732b83a73f64bc4df9eb4bf5bda67e07fab2ec4c93d49502192e85de3e48b7ff7a169de30459cb30bde78994448e948654
SSDEEP

98304:tdQGWNc+PcbVnUwVLEgptQi2Jx02Ycu5TpYNQIBlO6S4dsFDGUO5lHf3hGWYS87:N18i0K2YNYNQIBYR4dNUEAWnm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-09-08_e8a5fc852c57b4a0cc41410522b10aae_magniber

Files

2024-09-08_e8a5fc852c57b4a0cc41410522b10aae_magniber
.exe windows:5 windows

499ce73a24ec0b5a23114b5b31dd0abc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
FindResourceW
LoadLibraryExW
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetCurrentThreadId
DecodePointer
GetCommandLineW
HeapDestroy
HeapSize
HeapReAlloc
HeapFree
SizeofResource
GetProcessHeap
CloseHandle
WaitForSingleObject
CreateEventW
Sleep
GetCurrentProcess
FlushInstructionCache
SetLastError
LockResource
ReadConsoleW
ReadFile
VirtualQuery
GetSystemInfo
HeapAlloc
MultiByteToWideChar
GetCurrentDirectoryA
LoadLibraryW
GetFileSize
GetLastError
GetModuleHandleA
LoadLibraryA
VirtualProtect
CreateFileW
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetStringTypeW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
SetConsoleCtrlHandler
FatalAppExitA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetFileType
CreateSemaphoreW
GetTickCount
GetStartupInfoW
EnterCriticalSection
InterlockedIncrement
RaiseException
LeaveCriticalSection
lstrcmpiW
GetModuleHandleW
GetProcAddress
FreeLibrary
InterlockedDecrement
SetEvent
FindResourceExW
TlsFree
TlsSetValue
InitializeSListHead
InterlockedPopEntrySList
InterlockedPushEntrySList
IsProcessorFeaturePresent
VirtualAlloc
VirtualFree
IsDebuggerPresent
OutputDebugStringW
EncodePointer
CreateThread
ExitThread
RtlUnwind
GetCurrentThread
ExitProcess
GetModuleHandleExW
AreFileApisANSI
WideCharToMultiByte
GetStdHandle
WriteFile
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
TlsAlloc
TlsGetValue
SetEndOfFile

user32

SetWindowPos
MapWindowPoints
GetClientRect
GetParent
GetWindowRect
GetMonitorInfoW
MonitorFromWindow
GetWindowLongW
GetWindow
EndDialog
GetActiveWindow
CharNextW
DefWindowProcW
SendDlgItemMessageW
SetWindowLongW
DialogBoxParamW
UnregisterClassW
DestroyWindow
PeekMessageW
GetMessageW
TranslateMessage
DispatchMessageW
PostThreadMessageW

ole32

CoTaskMemAlloc
CoCreateInstance
CoInitialize
StringFromGUID2
CoTaskMemRealloc
CoRegisterClassObject
CoResumeClassObjects
CoRevokeClassObject
CoUninitialize
CoSuspendClassObjects
CoTaskMemFree

oleaut32

UnRegisterTypeLi
SysStringLen
RegisterTypeLi
SysFreeString
LoadTypeLi
SysAllocString
VarUI4FromStr

advapi32

RegCloseKey
RegQueryInfoKeyW
RegDeleteValueW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteKeyW

comctl32

InitCommonControlsEx

gdiplus

GdiplusShutdown

gdi32

DeleteDC

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 392KB - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 76KB - Virtual size: 632KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data0.pdf
data1931242.doc

Sharing

General

Malware Config

Signatures

Files

499ce73a24ec0b5a23114b5b31dd0abc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

oleaut32

advapi32

comctl32

gdiplus

gdi32

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 392KB - Virtual size: 392KB

.data Size: 7KB - Virtual size: 19KB

.rsrc Size: 3.4MB - Virtual size: 3.4MB

.reloc Size: 76KB - Virtual size: 632KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 392KB - Virtual size: 392KB

.data
Size: 7KB - Virtual size: 19KB

.rsrc
Size: 3.4MB - Virtual size: 3.4MB

.reloc
Size: 76KB - Virtual size: 632KB