Overview

overview

7

Static

static

3

2024-10-18...il.exe

windows7-x64

7

2024-10-18...il.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-10-18_688ee4f3717760e9bb84d47450898e16_magniber_revil

  • Size

    4.4MB

  • Sample

    241018-jjwz3sxgml

  • MD5

    688ee4f3717760e9bb84d47450898e16

  • SHA1

    935b0eb1dff7b2a72961ff5054cda346fae6fbfc

  • SHA256

    f42305fb63c3028cc5cc994ebf0b6eee25782e80f8e3efc6dc8784f37ed40b3c

  • SHA512

    2a963cf0ed44be09f0115305cc8550c65da3f6f672f9be264d8f1c286cb3ec64c7534fd2327d954080acc3f5693b9130e2a5d0c8a01ed1f7489eb128f584441c

  • SSDEEP

    49152:lydU63yzbHuA68FKiouCP5evteVegZKUxT216au68QPxUdJoLNiXicJFFRGNzj3:lCUhXHuA6QK4GevBgDx2177wRGpj3

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      2024-10-18_688ee4f3717760e9bb84d47450898e16_magniber_revil

    • Size

      4.4MB

    • MD5

      688ee4f3717760e9bb84d47450898e16

    • SHA1

      935b0eb1dff7b2a72961ff5054cda346fae6fbfc

    • SHA256

      f42305fb63c3028cc5cc994ebf0b6eee25782e80f8e3efc6dc8784f37ed40b3c

    • SHA512

      2a963cf0ed44be09f0115305cc8550c65da3f6f672f9be264d8f1c286cb3ec64c7534fd2327d954080acc3f5693b9130e2a5d0c8a01ed1f7489eb128f584441c

    • SSDEEP

      49152:lydU63yzbHuA68FKiouCP5evteVegZKUxT216au68QPxUdJoLNiXicJFFRGNzj3:lCUhXHuA6QK4GevBgDx2177wRGpj3

    Score
    7/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks