2024-10-09_2ef1d463ba6c2a421e1323e90caae956_magniber

Sharing

Copy URL

Twitter E-mail

General

Target

2024-10-09_2ef1d463ba6c2a421e1323e90caae956_magniber
Size

564KB
MD5

2ef1d463ba6c2a421e1323e90caae956
SHA1

8c6425a42e97e62c40babe8178b88ee590ebed18
SHA256

68c5f25c669744b71a292628126edfc824386cf354a442d63bcbcc2c0514cd49
SHA512

f01a9ac726b94b777555855b3d4410c06fa46282caad7ee145a36983b4f9c6f70cc6163925d762b5d2568e1b4b2a0ed3ab6f9ca1bebdfc0b9d32e7c8d2e376bb
SSDEEP

12288:lwkbfcjNvSk4ebXSHNzhibPS9jxYnovshuqfXcg8tZPzgf:lwfN68SHOS9tk2g8rcf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-10-09_2ef1d463ba6c2a421e1323e90caae956_magniber

Files

2024-10-09_2ef1d463ba6c2a421e1323e90caae956_magniber
.exe windows:6 windows x86 arch:x86

2062003767d613847dea1da414fd36fa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
LocalAlloc
HeapSize
ReadConsoleW
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
GetProcessHeap
OutputDebugStringW
SetFilePointerEx
GetFileSizeEx
GetConsoleMode
GetConsoleCP
FlushFileBuffers
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
WriteFile
ExitProcess
HeapReAlloc
HeapFree
HeapAlloc
WriteConsoleW
GetModuleHandleExW
GetModuleFileNameW
GetFileType
InterlockedPushEntrySList
LoadLibraryExW
FreeLibrary
RtlUnwind
RaiseException
FindNextFileW
FindClose
GetUserDefaultLangID
EnumTimeFormatsA
MapUserPhysicalPages
GetComputerNameExW
DeleteFileW
CreateFileA
FindResourceExW
FindResourceExA
OutputDebugStringA
CreateProcessA
LoadLibraryA
CreateEventA
lstrlenA
lstrcatW
CloseHandle
UnmapViewOfFile
ReadFile
GetStdHandle
GetFileInformationByHandle
MapViewOfFile
OpenFileMappingW
CreateFileMappingW
LoadResource
WaitForSingleObject
GetLastError
CreateFileW
TerminateProcess
GetCurrentProcess
InitializeSListHead
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
VirtualAlloc
LocalFree
WideCharToMultiByte
FormatMessageW
EnterCriticalSection
LeaveCriticalSection
InterlockedExchange
MultiByteToWideChar
EncodePointer
DecodePointer
SetLastError
InitializeCriticalSectionAndSpinCount
CreateEventW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
GetModuleHandleW
GetProcAddress
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
SetEvent
ResetEvent
WaitForSingleObjectEx
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW

user32

RegisterClassA
CallWindowProcA
ShowWindow
MoveWindow
GetDlgItem
SetDlgItemInt
GetDlgItemInt
CheckDlgButton
IsDlgButtonChecked
PostQuitMessage
CreateWindowExA
wsprintfA
SendMessageA
PostMessageA
DefMDIChildProcA
LoadImageA
LoadIconA
LoadCursorFromFileA
LoadCursorA
LoadBitmapA
CallNextHookEx
GetWindowThreadProcessId
FindWindowA
GetParent
SetClassLongA
GetClassLongA
SetWindowLongA
GetWindowLongA
InflateRect
ChildWindowFromPoint
WindowFromPoint
GetCursorPos
SetCursor
MessageBeep
MessageBoxA
AdjustWindowRect
GetWindowRect
GetClientRect
SetWindowTextA
GetScrollRange
GetScrollPos
InvalidateRect
EndPaint
BeginPaint
SetForegroundWindow
UpdateWindow
TrackPopupMenuEx
GetMenuCheckMarkDimensions
AppendMenuA
EnableMenuItem
CreateMenu
GetMenu
LoadMenuA
GetSystemMetrics
CreateAcceleratorTableA
IsWindowEnabled
SetCapture
SendInput
GetKeyState
GetFocus
SetFocus
IsClipboardFormatAvailable
ChangeClipboardChain
GetDialogBaseUnits
DefWindowProcA

gdi32

GetStockObject
CreatePatternBrush
SetWindowOrgEx
GetObjectA
CreateHalftonePalette
SetTextJustification
SetTextAlign
SetTextColor
SetBkMode
SetBkColor

comdlg32

GetOpenFileNameA
GetSaveFileNameA

advapi32

ConvertSidToStringSidA
GetTokenInformation

shell32

SHGetFolderPathW

ole32

CreateStreamOnHGlobal

avifil32

AVIMakeCompressedStream

winmm

mmioOpenA
mmioClose
mmioRead
mmioDescend
mmioAscend

crypt32

CryptSIPLoad
CryptSIPPutSignedDataMsg

shlwapi

PathFindExtensionA
StrToIntExA

activeds

ord30
ord22

pdh

PdhBrowseCountersA
PdhAddCounterW

rpcrt4

RpcBindingServerFromClient
RpcBindingToStringBindingW
RpcBindingInqOption

authz

AuthzInitializeResourceManager

Sections

.text
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 185KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2062003767d613847dea1da414fd36fa

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

avifil32

winmm

crypt32

shlwapi

activeds

pdh

rpcrt4

authz

Sections

.text Size: 252KB - Virtual size: 251KB

.rdata Size: 96KB - Virtual size: 96KB

.data Size: 12KB - Virtual size: 19KB

.gfids Size: 1024B - Virtual size: 728B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 185KB - Virtual size: 184KB

.reloc Size: 15KB - Virtual size: 15KB

.text
Size: 252KB - Virtual size: 251KB

.rdata
Size: 96KB - Virtual size: 96KB

.data
Size: 12KB - Virtual size: 19KB

.gfids
Size: 1024B - Virtual size: 728B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 185KB - Virtual size: 184KB

.reloc
Size: 15KB - Virtual size: 15KB