2024-10-03_4849d854ff20e9ea5dbea738e90c97b6_floxif_magniber | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-03_4849d854ff20e9ea5dbea738e90c97b6_floxif_magniber
Size

27.1MB
MD5

4849d854ff20e9ea5dbea738e90c97b6
SHA1

23702b2e044b4b12080c836b93dc0935efa695fa
SHA256

b4cca90d0ac5bd483812d5036f39be46e661be9eef551c6a95a9d6721598a43a
SHA512

50912e4a99e868d6ce0924368a59ad0544377473e8856ae92bf465df5edb596f041d6bfdd96d9785d729e8bc0bcf47a9d17bcd4e5ad84f035fc5ff7e9c5a10d7
SSDEEP

393216:E8wQ/FXJzxfG/RUV5i2fyd4jGhEfyd4jGhEfyd4jGhEfyd4jGhEfyd4jGhEfydUd:E8rlJ9eiLBW61

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-10-03_4849d854ff20e9ea5dbea738e90c97b6_floxif_magniber

Files

2024-10-03_4849d854ff20e9ea5dbea738e90c97b6_floxif_magniber
.exe windows:5 windows x86 arch:x86

bc10594f0e5b090521adac523994d99c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetProcessHeap
HeapFree
GetTickCount
GetModuleFileNameW
SetEnvironmentVariableW
GetSystemInfo
MapViewOfFile
GetLastError
CreateFileW
CreateFileMappingW
UnmapViewOfFile
GetFileInformationByHandle
CloseHandle
VirtualAlloc
VirtualFree
GetModuleHandleA
GetFileSizeEx
GetProcAddress
LoadLibraryW

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xcpad
Size: - Virtual size: 2.6MB

.idata
Size: 1024B - Virtual size: 654B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ