Overview

overview

10

Static

static

3

2024-09-14...er.exe

windows7-x64

10

2024-09-14...er.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-09-14_b67205c1bcf1db9a6d2ffd0d63b5716d_magniber

  • Size

    10.5MB

  • Sample

    240914-p8kw1avdln

  • MD5

    b67205c1bcf1db9a6d2ffd0d63b5716d

  • SHA1

    2a2ca911df674249f104b7907369064ae5574eb1

  • SHA256

    b400415194856f6615c61441c7cec5a24fd74e131a6e0e04aa5330b3f921c5da

  • SHA512

    ee5a3eb9379f244c2e17b2e6ca6c15ef5538dd3afa046159f1be0b5886d4eb10056bb3eccecff1cd1b893f79d462b03b510ef9dbe1332210106af5a2951c8509

  • SSDEEP

    196608:tly21YbNPnswfRui9jHqT/ZKm4+mzQOE5WsBC3lChnD+h30ENo9:tly2+JnsgHMlW8xBgIhD01Nc

Score
10/10
banloaddiscoverydownloaderdropperevasiontrojan

Malware Config

Targets

    • Target

      2024-09-14_b67205c1bcf1db9a6d2ffd0d63b5716d_magniber

    • Size

      10.5MB

    • MD5

      b67205c1bcf1db9a6d2ffd0d63b5716d

    • SHA1

      2a2ca911df674249f104b7907369064ae5574eb1

    • SHA256

      b400415194856f6615c61441c7cec5a24fd74e131a6e0e04aa5330b3f921c5da

    • SHA512

      ee5a3eb9379f244c2e17b2e6ca6c15ef5538dd3afa046159f1be0b5886d4eb10056bb3eccecff1cd1b893f79d462b03b510ef9dbe1332210106af5a2951c8509

    • SSDEEP

      196608:tly21YbNPnswfRui9jHqT/ZKm4+mzQOE5WsBC3lChnD+h30ENo9:tly2+JnsgHMlW8xBgIhD01Nc

    Score
    10/10
    banloaddiscoverydownloaderdropperevasiontrojan

    • Banload

      Banload variants download malicious files, then install and execute the files.

      trojandropperdownloaderbanload

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks