2024-10-09_c5a2f25661ed0d5dbc722488945e0953_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-09_c5a2f25661ed0d5dbc722488945e0953_magniber
Size

6.1MB
MD5

c5a2f25661ed0d5dbc722488945e0953
SHA1

3e8eb93729177eb3a99c6a74e466f33370364853
SHA256

4dad8739271b17a4610e8bfd7121fd04ff19c5fbbf73ccc63c110757592c8c7f
SHA512

186248df70ccc0e08aa5fb88b7d271a92239af5e6919785fcd1f084221f0491a4048277c011604498ecb34e4d33cd33abcb2e6a5159cfe0f593676266b595053
SSDEEP

98304:uEkxLmg9j7G/anNovEr1o2sYgpeAcDqC4sMFg0UBuagWIqXnGGfKedmpHVCYTKeh:RamKjnbfs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-10-09_c5a2f25661ed0d5dbc722488945e0953_magniber

Files

2024-10-09_c5a2f25661ed0d5dbc722488945e0953_magniber
.exe windows:5 windows x86 arch:x86

d12787da621a01d046030cdc60de616b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Projects\EOR_5\Project\Release\GreatDeeds.pdb

Imports

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegCloseKey
RegSetValueExA

bass

BASS_SampleFree
BASS_StreamFree
BASS_ChannelGetLength
BASS_ChannelStop
BASS_ChannelFlags
BASS_ChannelPlay
BASS_ChannelSetAttribute
BASS_ChannelPause
BASS_ChannelIsActive
BASS_ChannelSeconds2Bytes
BASS_ChannelBytes2Seconds
BASS_ChannelSetPosition
BASS_ChannelGetPosition
BASS_ErrorGetCode
BASS_SampleLoad
BASS_StreamCreateFile
BASS_SampleGetChannel
BASS_Stop
BASS_Free
BASS_GetVersion
BASS_ChannelGetInfo
BASS_Init

gdi32

GetStockObject

kernel32

SetEnvironmentVariableA
GetProcessHeap
SetEndOfFile
SetEvent
CloseHandle
CreateEventA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetUserDefaultLangID
GetModuleHandleA
GetLastError
GetModuleFileNameA
InterlockedIncrement
InterlockedDecrement
WaitForSingleObject
InterlockedExchange
CreateFileA
GetFileSize
GetModuleHandleW
WriteFile
GetCurrentProcess
CreateDirectoryA
GetProcAddress
GetVersionExA
DeleteFileA
CopyFileW
CreateProcessA
GetShortPathNameA
OpenProcess
GetCurrentProcessId
VirtualQueryEx
VirtualProtectEx
SetCurrentDirectoryA
FindFirstFileA
FindClose
GetLocalTime
FindNextFileA
GetCurrentDirectoryA
FreeLibrary
LoadLibraryA
Sleep
QueryPerformanceCounter
QueryPerformanceFrequency
GetThreadTimes
GetCurrentThread
lstrcmp
lstrlen
lstrcpyn
MultiByteToWideChar
GetComputerNameA
GlobalMemoryStatus
GetLocaleInfoA
FormatMessageA
UnmapViewOfFile
MapViewOfFile
GetFileSizeEx
CreateFileMappingW
CreateFileW
ExitProcess
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CreateThread
GetCurrentThreadId
RaiseException
ResumeThread
SuspendThread
TerminateThread
GetPrivateProfileStringA
WritePrivateProfileStringA
ReadFile
WideCharToMultiByte
InterlockedCompareExchange
GetFileAttributesA
GetFileAttributesW
GetFileAttributesExW
GetCurrentDirectoryW
SetCurrentDirectoryW
GetFileAttributesExA
GetFileTime
SetFileTime
GetDiskFreeSpaceExW
GetFullPathNameW
RemoveDirectoryW
DeleteFileW
CreateDirectoryW
CreateHardLinkW
GetDiskFreeSpaceExA
GetFullPathNameA
RemoveDirectoryA
CreateHardLinkA
MoveFileW
MoveFileA
CopyFileA
GetFileInformationByHandle
GetShortPathNameW
FindFirstFileW
FindNextFileW
LocalFree
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
GetCommandLineA
GetStartupInfoA
HeapFree
HeapReAlloc
HeapAlloc
FileTimeToSystemTime
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
PeekNamedPipe
GetFileType
DuplicateHandle
GetTimeFormatA
GetDateFormatA
GetDriveTypeA
LCMapStringA
LCMapStringW
GetCPInfo
GetStdHandle
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapSize
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
LockResource
HeapCreate
HeapDestroy
VirtualFree
GetTickCount
FatalAppExitA
VirtualAlloc
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
GetACP
GetOEMCP
IsValidCodePage
CompareStringA
CompareStringW
SetConsoleCtrlHandler
InitializeCriticalSectionAndSpinCount
SetStdHandle
CreatePipe
GetExitCodeProcess
GetTimeZoneInformation

setupapi

SetupDiGetClassDevsExA
SetupDiEnumDeviceInfo
SetupDiOpenDevRegKey
SetupDiGetDeviceRegistryPropertyA

shell32

ShellExecuteA
SHGetFolderPathA
SHGetSpecialFolderPathA

shlwapi

StrCSpnA

user32

LoadCursorA
MessageBoxW
ShowWindow
GetCursorPos
SetCursorPos
MessageBoxA
SendMessageA
GetSystemMetrics
SystemParametersInfoA
EnumDisplaySettingsA
EnumDisplayDevicesA
DefWindowProcW
SetWindowTextW
RegisterClassW
UnhookWindowsHookEx
DispatchMessageA
CreateWindowExW
SetWindowsHookExA
SetClassLongA
PeekMessageA
SetWindowLongA
GetAsyncKeyState
BeginPaint
SetFocus
GetClientRect
CallNextHookEx
LoadIconA
UnregisterClassW
FillRect
GetWindowLongA
SendInput
SetCursor
DestroyWindow
EndPaint
MapWindowPoints
ReleaseCapture
GetForegroundWindow
GetKeyboardState
PtInRect
WindowFromPoint
GetKeyState
ToAscii
SetCapture
ScreenToClient
ClientToScreen
SetWindowPos
PostQuitMessage

winmm

timeGetTime
timeBeginPeriod
timeEndPeriod

wsock32

htons
htonl

wtsapi32

WTSRegisterSessionNotification

d3d9

Direct3DCreate9

d3dx9_43

D3DXMatrixTranslation
D3DXMatrixRotationZ
D3DXCompileShaderFromFileA
D3DXMatrixOrthoOffCenterLH
D3DXCreateTextureFromFileInMemoryEx
D3DXCreateTexture
D3DXMatrixScaling
D3DXMatrixMultiply
D3DXSaveSurfaceToFileA

Sections

.text
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 516KB - Virtual size: 547KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 203KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zero
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d12787da621a01d046030cdc60de616b

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

advapi32

bass

gdi32

kernel32

setupapi

shell32

shlwapi

user32

winmm

wsock32

wtsapi32

d3d9

d3dx9_43

Sections

.text Size: 4.0MB - Virtual size: 4.0MB

.rdata Size: 1.3MB - Virtual size: 1.3MB

.data Size: 516KB - Virtual size: 547KB

.rsrc Size: 203KB - Virtual size: 202KB

.zero Size: 4KB - Virtual size: 3KB

.text
Size: 4.0MB - Virtual size: 4.0MB

.rdata
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 516KB - Virtual size: 547KB

.rsrc
Size: 203KB - Virtual size: 202KB

.zero
Size: 4KB - Virtual size: 3KB