2024-10-10_4be9a0f7274350bdea55ad8e75e871ec_magniber

Sharing

Copy URL

Twitter E-mail

General

Target

2024-10-10_4be9a0f7274350bdea55ad8e75e871ec_magniber
Size

1.9MB
MD5

4be9a0f7274350bdea55ad8e75e871ec
SHA1

4871603be84b6e0f03cd7816e94bf680858f626d
SHA256

7cbcec5e12b65f508efa4ec5d157cb713dedaec5b311681c79df1061ade4619d
SHA512

3486ecd9f821c9c951a00c1468dfc21f8a14a4762e1e1d0bf4d3a28970cdfc5b6f03ad22ea5eafe7e9d9830207b56c685c234e8b9cc515bb4473bc70dd30e063
SSDEEP

24576:U9/MAtYKLHx3qdF/OrPNSiwSPVoTA1NyM3nBShqCB8nE7VQQn4NwI4p:U9UAtYU3qdF/OrPN5TuYyKnBeRpnn+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-10-10_4be9a0f7274350bdea55ad8e75e871ec_magniber

Files

2024-10-10_4be9a0f7274350bdea55ad8e75e871ec_magniber
.exe windows:6 windows x86 arch:x86

0f470728c84ef97184244f271a93d017

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\用户目录\我的文档\火山源码\内存DLL永久注入\_int\内存DLL永久注入\debug\win32\debuger\内存DLL永久注入.pdb

Imports

kernel32

GetSystemDirectoryW
GetVersionExW
VirtualQuery
GetModuleFileNameW
GlobalFlags
LocalFree
FormatMessageW
CopyFileW
IsBadReadPtr
IsBadWritePtr
SetSystemPowerState
MultiByteToWideChar
WideCharToMultiByte
GenerateConsoleCtrlEvent
GetQueuedCompletionStatus
SetEvent
ResetEvent
CreateEventW
Sleep
CreateThread
SetThreadPriority
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
GetLocalTime
SetLocalTime
FileTimeToSystemTime
LoadLibraryExW
lstrcmpiW
VerSetConditionMask
VerifyVersionInfoW
CreateFileW
FlushFileBuffers
GetStringTypeW
SetStdHandle
HeapQueryInformation
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
OpenProcess
GetTimeZoneInformation
EnumSystemLocalesW
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetFileSizeEx
GetConsoleOutputCP
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetCurrentThread
SetConsoleCtrlHandler
WriteFile
HeapValidate
GetCommandLineA
WriteConsoleW
GetFileType
GetStdHandle
GetModuleHandleExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InterlockedFlushSList
RtlUnwind
QueryPerformanceCounter
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
LoadLibraryExA
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
EncodePointer
CreateProcessW
GetExitCodeProcess
TerminateProcess
GetCurrentProcessId
GetCurrentProcess
WaitForSingleObject
PeekNamedPipe
CreatePipe
CloseHandle
RemoveDirectoryW
ReadFile
GetFileAttributesExW
GetFileAttributesW
FindNextFileW
FindFirstFileW
FindClose
DeleteFileW
CreateDirectoryW
GetCurrentDirectoryW
GetSystemInfo
SetCurrentDirectoryW
GetCommandLineW
GetUserDefaultLCID
LoadLibraryW
GetProcAddress
FreeLibrary
FindResourceW
SizeofResource
LockResource
LoadResource
FreeResource
GetTickCount
ExitProcess
DebugBreak
MulDiv
GlobalFree
GlobalLock
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalAlloc
OutputDebugStringW
IsBadStringPtrW
GetModuleHandleW
GetCurrentThreadId
LeaveCriticalSection
IsDebuggerPresent
IsBadStringPtrA
TryEnterCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
SetEndOfFile
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
SetLastError
GetLastError
RaiseException
FindFirstFileExW
DecodePointer

user32

GetClassInfoExW
RegisterClassExW
PostQuitMessage
CharNextW
wsprintfW
GetCursorPos
TrackPopupMenu
DeleteMenu
ModifyMenuW
AppendMenuW
CallWindowProcW
GetMenuItemCount
GetSubMenu
EnableMenuItem
CheckMenuItem
DestroyMenu
IsWindowVisible
CreateMenu
GetMenu
TranslateAcceleratorW
DestroyAcceleratorTable
CreateAcceleratorTableW
GetDlgItem
GetSysColor
FillRect
IsMenu
InsertMenuW
IsChild
IsIconic
UnregisterClassW
MessageBoxW
IsWindow
DestroyWindow
SetWindowPos
InvalidateRect
GetWindowLongW
SetWindowLongW
GetMessageW
TranslateMessage
DispatchMessageW
GetNextDlgTabItem
GetDlgCtrlID
SetFocus
GetFocus
IsWindowEnabled
SetMenu
GetSystemMenu
DrawIcon
BeginPaint
EndPaint
SetWindowRgn
GetWindowTextW
GetWindowTextLengthW
IntersectRect
IsRectEmpty
GetClassNameW
GetLastActivePopup
IsDialogMessageW
IsZoomed
RedrawWindow
ClientToScreen
WinHelpW
ScreenToClient
SetRect
GetTopWindow
DestroyIcon
CreatePopupMenu
GetMonitorInfoW
MonitorFromWindow
EnumDisplaySettingsW
GetWindowThreadProcessId
EnumWindows
PeekMessageW
DefWindowProcW
SendMessageW
ShowWindow
GetKeyState
EnableWindow
SetWindowTextW
AdjustWindowRectEx
SetCursor
GetWindow
GetSystemMetrics
GetDC
GetWindowDC
ReleaseDC
GetClientRect
GetWindowRect
LoadStringW
PostMessageW
RegisterClassW
GetClassInfoW
CreateWindowExW
GetActiveWindow
SetTimer
SetPropW
GetPropW
RemovePropW
GetDesktopWindow
GetParent
SetForegroundWindow
SetActiveWindow
EmptyClipboard
GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
MoveWindow
WaitForInputIdle
AttachThreadInput
ExitWindowsEx
CopyImage
LoadImageW
LoadIconW
LoadCursorW

gdi32

GetTextExtentPoint32W
CreateSolidBrush
SetBkColor
SetTextColor
CreateEllipticRgn
CreateRoundRectRgn
GetClipBox
CombineRgn
CreateBitmap
CreateBrushIndirect
CreateHatchBrush
CreateFontIndirectW
CreateRectRgn
ExtCreateRegion
GetObjectType
GetPixel
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
SetMapMode
SetPixel
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
GetObjectW
SetDIBColorTable
CreateDIBSection
GdiAlphaBlend
SetStretchBltMode
StretchBlt
SelectPalette
SelectObject
RealizePalette
GetSystemPaletteEntries
GetStockObject
GetDIBits
GetDeviceCaps
DeleteDC
CreatePalette
CreateCompatibleDC
DeleteObject
CreatePatternBrush
CreateCompatibleBitmap
BitBlt

advapi32

RegSetValueExW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegCloseKey
RegCreateKeyExW
RegQueryInfoKeyW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
OpenProcessToken
RegQueryValueExW
RegQueryValueW
RegOpenKeyExW

shell32

ShellExecuteW
DragAcceptFiles
DragFinish
DragQueryFileW
Shell_NotifyIconW

ole32

CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
OleRun
CLSIDFromProgID
IIDFromString
CLSIDFromString
CoCreateInstance
CoInitializeEx
CoUninitialize
CreateStreamOnHGlobal

oleaut32

VarUI4FromStr
VariantTimeToSystemTime
SystemTimeToVariantTime
VarUdateFromDate
OleCreateFontIndirect
GetActiveObject
RegisterTypeLi
LoadTypeLi
LHashValOfNameSys
VarCmp
VariantChangeType
VariantCopyInd
VariantCopy
VariantClear
VariantInit
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
SysStringLen
SysAllocString
SysFreeString
OleCreatePictureIndirect

comctl32

ImageList_Create
ImageList_Destroy
ImageList_AddMasked
InitCommonControlsEx

uxtheme

SetWindowTheme

ws2_32

WSACleanup
WSAStartup

gdiplus

GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipBitmapUnlockBits
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusShutdown
GdiplusStartup
GdipFree
GdipAlloc
GdipBitmapLockBits
GdipDeleteGraphics
GdipDrawImageRectI
GdipSetCompositingMode
GdipGetImageHeight

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 690KB - Virtual size: 689KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f470728c84ef97184244f271a93d017

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

uxtheme

ws2_32

gdiplus

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 690KB - Virtual size: 689KB

.data Size: 36KB - Virtual size: 50KB

.rsrc Size: 56KB - Virtual size: 55KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 690KB - Virtual size: 689KB

.data
Size: 36KB - Virtual size: 50KB

.rsrc
Size: 56KB - Virtual size: 55KB