D:\Backupviewer16\source\SecBackupViewer16\Release\SecBackupViewer16.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-06-17_fb6ec588da60c54f47c5e48d3366e9c6_mafia_magniber.exe
Resource
win7-20240508-en
windows7-x64
5 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-06-17_fb6ec588da60c54f47c5e48d3366e9c6_mafia_magniber.exe
Resource
win10v2004-20240611-en
windows10-2004-x64
6 signatures
150 seconds
General
-
Target
2024-06-17_fb6ec588da60c54f47c5e48d3366e9c6_mafia_magniber
-
Size
13.7MB
-
MD5
fb6ec588da60c54f47c5e48d3366e9c6
-
SHA1
98f844c3ead82b459ec528f10beeea2627e05b21
-
SHA256
ae382ff94d4b7cd0c69e340471f97d67f49d5e12e1d93cbb2ef8c81e5dfffbb2
-
SHA512
103c3d85dcea3fb4963ec1d8e8f58eed4aca04e276217929ffa89fb4bc85db9052ac789dc7d9977db19000edd260af194e4ff023e84a0949d3296e1860e0041c
-
SSDEEP
196608:68iq85xX6BQylJbueRpRb6J45lvvvBSzQItvYx9KPNEFTHhqhAYG:+PXmNLmzQKYvKPAaG
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 2024-06-17_fb6ec588da60c54f47c5e48d3366e9c6_mafia_magniber
Files
-
2024-06-17_fb6ec588da60c54f47c5e48d3366e9c6_mafia_magniber.exe windows:5 windows x86 arch:x86
17c2bdb14a52b8ed272ae3887006950b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
gdiplus
GdipDeleteGraphics
GdipDrawImageRectI
GdipGetImagePalette
GdiplusShutdown
GdipCreateFromHDC
GdipGetImageEncodersSize
GdipGetImageHeight
GdipLoadImageFromStream
GdipGetImageWidth
GdipLoadImageFromStreamICM
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipFree
GdipDisposeImage
GdipAlloc
GdipCloneImage
GdiplusStartup
GdipDrawImageI
GdipSetInterpolationMode
GdipGetImageEncoders
GdipSaveImageToFile
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipBitmapLockBits
GdipDrawImagePointRectI
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
kernel32
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetCPInfo
GetACP
FreeEnvironmentStringsW
IsValidCodePage
GetConsoleCP
GetConsoleMode
ReleaseSemaphore
InitializeSListHead
InterlockedPushEntrySList
QueryDepthSList
CreateSemaphoreW
InterlockedPopEntrySList
InterlockedFlushSList
WaitForMultipleObjects
CreateTimerQueue
DeleteTimerQueueTimer
CreateTimerQueueTimer
GetProcessAffinityMask
VirtualFree
SetThreadAffinityMask
GetStringTypeW
LCMapStringW
SetEnvironmentVariableA
WriteConsoleW
GetThreadPriority
GetProcessHeap
SignalObjectAndWait
SleepEx
SetUnhandledExceptionFilter
SetStdHandle
HeapSize
HeapQueryInformation
ExitProcess
RaiseException
RtlUnwind
GetThreadTimes
FreeLibraryAndExitThread
SwitchToThread
SetConsoleCtrlHandler
HeapReAlloc
GetTimeZoneInformation
GetSystemTimeAsFileTime
VirtualQuery
VirtualAlloc
HeapAlloc
DecodePointer
EncodePointer
HeapFree
CreateThread
ExitThread
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
VirtualProtect
GetFileTime
GetFileSizeEx
GetFileAttributesExW
SetErrorMode
SearchPathW
GetProfileIntW
GetNumberFormatW
GetWindowsDirectoryW
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
lstrcmpiW
GetFileSize
GetCurrentDirectoryW
lstrcpyW
GetSystemDirectoryW
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
InterlockedIncrement
GlobalGetAtomNameW
ResumeThread
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
lstrcmpA
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
CompareStringA
GetLocaleInfoW
LoadLibraryExW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetModuleFileNameW
ReleaseActCtx
CreateActCtxW
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
InitializeCriticalSectionAndSpinCount
lstrcmpW
CopyFileW
GlobalSize
FormatMessageW
MulDiv
InterlockedDecrement
DebugBreak
GetExitCodeThread
SetThreadPriority
CreateEventA
CreateFileA
OutputDebugStringA
GetModuleHandleA
GetModuleFileNameA
GetVersionExA
LoadLibraryA
GlobalMemoryStatus
GetCurrentProcessId
FlushConsoleInputBuffer
GetStdHandle
GetFileType
GetVersion
GetCurrentThreadId
ResetEvent
GetSystemInfo
FreeResource
TerminateThread
GetTickCount
GetDiskFreeSpaceW
GetFileAttributesW
GlobalFree
FreeLibrary
SetCurrentDirectoryW
GetCurrentThread
GetCurrentProcess
LocalFree
RemoveDirectoryW
GetDriveTypeW
WriteFile
CreateFileW
CreateDirectoryW
DeleteFileW
GetTempFileNameW
GetTempPathW
ActivateActCtx
GetProcAddress
GetModuleHandleW
LoadLibraryW
DeactivateActCtx
SetLastError
InterlockedExchange
GlobalUnlock
GlobalLock
GlobalAlloc
SetThreadUILanguage
SetThreadLocale
GetVersionExW
GetSystemDefaultLangID
FindClose
FindFirstFileW
lstrlenA
OutputDebugStringW
QueryPerformanceFrequency
QueryPerformanceCounter
SetEvent
CreateEventW
MultiByteToWideChar
GetLastError
WideCharToMultiByte
lstrlenW
FindResourceW
LoadResource
LockResource
SizeofResource
Sleep
CloseHandle
WaitForSingleObject
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapCreate
SetHandleCount
GetThreadLocale
GetEnvironmentStringsW
ReadConsoleInputA
SetConsoleMode
CreateSemaphoreA
GetOEMCP
user32
HideCaret
InvertRect
SetCursorPos
DrawFrameControl
DrawEdge
DrawIconEx
GetNextDlgGroupItem
InvalidateRgn
CharNextW
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
RegisterClipboardFormatW
EnumChildWindows
LockWindowUpdate
UnpackDDElParam
ReuseDDElParam
DestroyIcon
InsertMenuItemW
BringWindowToTop
TranslateAcceleratorW
SetClassLongW
CreateAcceleratorTableW
LoadAcceleratorsW
DestroyAcceleratorTable
GetKeyboardState
RegisterClassA
ToUnicodeEx
CopyAcceleratorTableW
PostThreadMessageW
WaitMessage
GetMenuDefaultItem
SetMenuDefaultItem
CreatePopupMenu
IsMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
CharUpperW
GetAsyncKeyState
NotifyWinEvent
SetWindowRgn
DeleteMenu
UnregisterClassW
SetLayeredWindowAttributes
CopyImage
RealChildWindowFromPoint
GetSysColorBrush
DestroyMenu
GetMenuItemInfoW
ShowOwnedPopups
GetMessageW
SetWindowContextHelpId
MapDialogRect
SystemParametersInfoW
MessageBeep
IsZoomed
PostQuitMessage
WindowFromPoint
IntersectRect
MapVirtualKeyW
GetKeyNameTextW
LoadMenuW
GetWindowDC
ClientToScreen
GetWindowThreadProcessId
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
DrawStateW
IsWindowEnabled
SetWindowTextW
IsDialogMessageW
GetDlgItemTextW
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
EnableMenuItem
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetIconInfo
MonitorFromWindow
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
GetScrollPos
ShowScrollBar
ValidateRect
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
DefWindowProcW
CallWindowProcW
GetMenu
GetMenuState
GetMenuStringW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
CharNextA
EqualRect
SetRectEmpty
GetWindowLongA
SetWindowLongA
PostMessageA
RegisterClassExA
IsRectEmpty
SetFocus
LoadCursorA
SendMessageA
BeginPaint
EndPaint
DefWindowProcA
CloseWindow
DestroyWindow
CreateWindowExA
UpdateWindow
FrameRect
DrawTextA
MessageBoxA
GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW
CopyRect
CreateWindowExW
SetParent
MonitorFromRect
SetForegroundWindow
DrawIcon
IsIconic
AppendMenuW
GetSystemMenu
LoadIconW
LoadImageW
RedrawWindow
MoveWindow
ShowWindow
ScreenToClient
GetCursorPos
SetScrollRange
SetScrollPos
GetScrollRange
ReleaseDC
GetDC
GrayStringW
DrawTextExW
TabbedTextOutW
GetKeyState
CopyIcon
CharUpperBuffW
IsCharLowerW
MapVirtualKeyExW
IsClipboardFormatAvailable
GetWindowRgn
DestroyCursor
GetDoubleClickTime
CreateMenu
SubtractRect
GetUpdateRect
DrawFocusRect
EnumDisplayMonitors
GetSystemMetrics
GetMonitorInfoW
GetWindowModuleFileNameW
PtInRect
MessageBoxW
LoadCursorW
SetCursor
GetDlgCtrlID
SetWindowLongW
GetWindowLongW
LoadStringW
ReleaseCapture
SetCapture
LoadBitmapW
InvalidateRect
GetWindowRect
IsWindowVisible
GetWindow
DrawTextW
FillRect
GetClientRect
EnableWindow
KillTimer
SendMessageW
DispatchMessageW
TranslateMessage
PeekMessageW
GetParent
PostMessageW
IsWindow
SetWindowPos
SetTimer
InflateRect
OffsetRect
SetRect
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
GetMessagePos
GetClassNameW
GetKeyboardLayout
gdi32
CreateHatchBrush
CreateRectRgnIndirect
PatBlt
CreateFontIndirectW
CreateDIBitmap
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
OffsetRgn
RestoreDC
GetRgnBox
GetTextColor
SetDIBColorTable
RealizePalette
SetPixel
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
Rectangle
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
GetWindowOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
GetTextFaceW
GetObjectType
SaveDC
GetStockObject
CreateDCW
SelectPalette
CreatePatternBrush
CopyMetaFileW
CombineRgn
SetRectRgn
CreateRectRgn
GetDIBits
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectClipRgn
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
GetBkColor
DPtoLP
GetViewportExtEx
GetWindowExtEx
GetMapMode
ExtSelectClipRgn
CreateCompatibleBitmap
LPtoDP
BitBlt
CreateCompatibleDC
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
GetObjectW
CreatePen
SetTextColor
SetBkMode
SelectObject
DeleteObject
CreateSolidBrush
SetPixelV
SetStretchBltMode
SetROP2
GetSystemPaletteEntries
CreateFontW
SetBkColor
ExtTextOutA
CreateFontA
GetObjectA
GetBitmapBits
GetTextExtentPoint32W
EndDoc
EndPage
GetDeviceCaps
StartPage
StartDocW
StretchDIBits
CreateDIBSection
StretchBlt
DeleteDC
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetPixel
CreateBitmap
SetPolyFillMode
winspool.drv
ClosePrinter
DocumentPropertiesW
OpenPrinterW
advapi32
RegisterEventSourceA
CopySid
GetLengthSid
IsValidSid
LookupAccountSidW
GetAclInformation
GetAce
GetSecurityDescriptorOwner
GetSecurityDescriptorGroup
GetSecurityDescriptorDacl
GetSecurityDescriptorSacl
MakeSelfRelativeSD
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RevertToSelf
ReportEventA
DeregisterEventSource
GetNamedSecurityInfoW
SetThreadToken
ImpersonateSelf
OpenThreadToken
OpenProcessToken
DuplicateToken
CheckTokenMembership
GetTokenInformation
AdjustTokenPrivileges
LookupPrivilegeValueW
GetSecurityDescriptorControl
GetSecurityDescriptorLength
shell32
SHAppBarMessage
SHGetPathFromIDListW
DragQueryFileW
DragFinish
SHGetSpecialFolderPathW
ShellExecuteW
SHGetFileInfoW
SHBrowseForFolderW
SHGetMalloc
SHGetSpecialFolderLocation
SHGetDesktopFolder
comctl32
_TrackMouseEvent
InitCommonControlsEx
ord17
ImageList_GetIconSize
ole32
CoInitializeEx
CoCreateInstance
CoUninitialize
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
OleDuplicateData
ReleaseStgMedium
CoTaskMemFree
CreateStreamOnHGlobal
CoInitialize
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
OleLockRunning
CoRegisterMessageFilter
CoRevokeClassObject
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleGetClipboard
CoTaskMemAlloc
oleaut32
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
OleCreateFontIndirect
VarBstrFromDate
SysAllocString
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString
winmm
timeSetEvent
timeKillEvent
PlaySoundW
timeGetTime
timeBeginPeriod
timeGetDevCaps
Exports
Exports
??0CDewarping@@QAE@XZ
??1CDewarping@@QAE@XZ
?GetBorderPoints@CDewarping@@QAEKHHPAM0AAH@Z
?GetErrorString@CDewarping@@QAEPBDK@Z
?GetPanTiltByInputXY@CDewarping@@QAEXHHHHW4ePosition@@NAAN1@Z
?GetPreset@CDewarping@@QAEKAAW4eView@@PAUtagPTZ_VALUE@@@Z
?GetPtzPosition@CDewarping@@QAEKW4eView@@HPAUtagPTZ_VALUE@@@Z
?GetSubViewIndex@CDewarping@@QAEHHH@Z
?GetVersion@CDewarping@@QAEPBDXZ
?GetViewModeList@CDewarping@@QAEPBDW4eLensType@@@Z
?GetViewType@CDewarping@@QAEKAAW4eView@@@Z
?GetZoomLimits@CDewarping@@QAEKAAM0@Z
?ResizeImage@CDewarping@@QAEKPBUtagBuffer@@PAU2@H@Z
?SetCameraMaxResolution@CDewarping@@QAEKHH@Z
?SetCameraPosition@CDewarping@@QAEKW4ePosition@@@Z
?SetFishEyeCameraParameters@CDewarping@@QAEKNN@Z
?SetInputParams@CDewarping@@QAEKPAUtagBuffer@@@Z
?SetOutputParams@CDewarping@@QAEKPAUtagBuffer@@@Z
?SetPreset@CDewarping@@QAEKW4eView@@PAUtagPTZ_VALUE@@@Z
?SetPtzPosition@CDewarping@@QAEKW4eView@@HPAUtagPTZ_VALUE@@@Z
?SetViewQuality@CDewarping@@QAEKH@Z
?SetViewType@CDewarping@@QAEKW4eView@@@Z
?SetZoomLimits@CDewarping@@QAEKMM@Z
?Update@CDewarping@@QAEKXZ
HI_VOICE_DecReset
HI_VOICE_DecodeFrame
HI_VOICE_EncReset
HI_VOICE_EncodeFrame
HI_VOICE_GetVersion
HI_VOICE_TransCodeFrame
HI_VOICE_TransCodeReset
Sections
.text Size: 6.5MB - Virtual size: 6.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 873KB - Virtual size: 876KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 435KB - Virtual size: 64.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data1 Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rodata Size: 5KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5.9MB - Virtual size: 5.9MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ