3d77ce08aae982d05bbf4bda58be1fb848225e8ff499e82ee5f8219bc06f6797

Analysis

max time kernel
93s
max time network
128s
platform
windows11-21h2_x64
resource
win11-20241007-en
resource tags

arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
submitted
14-10-2024 17:33

Target

Magnus Night V3.exe
Size

2.8MB
MD5

ced2a2b65c17ea7446fc38db55c136f2
SHA1

37a09e0adfd6c694837fd3818dd649877c6763c1
SHA256

3d77ce08aae982d05bbf4bda58be1fb848225e8ff499e82ee5f8219bc06f6797
SHA512

85554a59fb0b67bc57dbea1fe53416cfd49584c2d516fd299db03503053baf3a44e280592a4d30cc963386c1399362dc5891bb0ff15e325eb3525cc3f896eefe
SSDEEP

49152:BeI/nFaNjfSVzHKsRXmPOpFasLsIt89QC7wlf6C/Zu4E3k:wsIlu56+E3

Score

6^/10

Legitimate hosting services abused for malware hosting/C2 1 TTPs 2 IoCs

Web Service

flow	ioc
1	raw.githubusercontent.com
2	raw.githubusercontent.com

Suspicious behavior: EnumeratesProcesses 4 IoCs

C:\Users\Admin\AppData\Local\Temp\Magnus Night V3.exe
"C:\Users\Admin\AppData\Local\Temp\Magnus Night V3.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:4236

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact