all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Redistribution of Magniber Ransomware in Korea (January 28th)

Add to bookmarks
Feb. 8, 2023, 12:26 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

On the morning of January 28th, the ASEC analysis team discovered the redistribution of Magniber disguised as normal Windows Installers (MSI). The distributed Magniber files have MSI as their extensions, disguising themselves as Windows update files. According to AhnLab’s log system as seen in Figure 1, it can be noted that the distribution increased starting from January 27th.



  • MS.Update.Center.Security.KB17347418.msi

  • MS.Update.Center.Security.KB2562020.msi

  • MS.Update.Center.Security.KB44945726.msi



Figure 1. Increase in Magniber distribution confirmed by AhnLab’s log system



The site that is currently distributing Magniber is …

ahnlab analysis asec center distributed distribution extensions files january korea log magniber malware analysis msi ransomware security system team update windows windows update

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Micropatches Released for Windows Workstation and Server Service Elevation of Privilege Vulnerability (CVE-2022-38034, CVE-2022-38045, No … an hour ago | malware.news
access attacker ben bypassing +20
FBI: Disruptive Chinese attacks against US infrastructure imminent an hour ago | malware.news
article attacks china chinese +19
Dark web inundated by cheap ransomware tools an hour ago | malware.news
article attacks cybercriminals cybersecurity +17
Ukrainian documents laced with old malware exposed an hour ago | malware.news
article back compromised cyberscoop +18
US indicts botnet operator an hour ago | malware.news
attacks bleepingcomputer botnet computers +7
AI tapped by Torq HyperSOC to better combat cyber threats an hour ago | malware.news
alert alert fatigue artificial artificial intelligence +25
CoralRaider Group Delivers Three Infostealers via CDN Cache an hour ago | malware.news
cache campaign cdn cisco +19
CrushFTP security advisory (AV24-221) an hour ago | malware.news
advisory article canadian canadian centre for cyber security +7
Cisco security advisory (AV24-223) an hour ago | malware.news
advisory article canadian canadian centre for cyber security +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Officer Hospital - Major Hospital Account - Full-Time - Healthcare Security

@ Allied Universal | Anaheim, CA, United States
View on infosec-jobs.com

Product Security Lead

@ Lely | Maassluis, Netherlands
View on infosec-jobs.com

Summer Associate, IT Information Security (Temporary)

@ Vir Biotechnology, Inc. | San Francisco, California, United States
View on infosec-jobs.com

Director, Governance, Risk and Compliance - Corporate

@ Ryan Specialty | Chicago, IL, US, 60606
View on infosec-jobs.com

Cybersecurity Governance, Risk, and Compliance Engineer

@ Emerson | Shakopee, MN, United States
View on infosec-jobs.com
View more jobs