_mazafaka
Static task
static1
Behavioral task
behavioral1
Sample
00d48daf7d46d76dd102527a48b6243d7e77d4f85b867044de99dfb3b2ddf9b1.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
00d48daf7d46d76dd102527a48b6243d7e77d4f85b867044de99dfb3b2ddf9b1.exe
Resource
win10v2004-20220812-en
General
-
Target
00d48daf7d46d76dd102527a48b6243d7e77d4f85b867044de99dfb3b2ddf9b1
-
Size
844KB
-
MD5
83f486d1953416ccf18c378009efc528
-
SHA1
a48f3aebf1e26c12b498e6d66ca599d10c763b35
-
SHA256
00d48daf7d46d76dd102527a48b6243d7e77d4f85b867044de99dfb3b2ddf9b1
-
SHA512
641962a04feb1dc9e1baf4d4b06ea5362fc4836f3b87cf013d5ce53e2729b682b5b52c11af106e1ce870e1a1874ebdaabbb96a6c0137ae563c00ba72368c1225
-
SSDEEP
12288:/U8+JhYTdmEfwaygnXvkxWUWBD+Ss1engI7ueSLygbZ3/ictSW9IapSU2B:/GJOEAwaygnXv2wa3enT7m/GNi2B
Malware Config
Signatures
Files
-
00d48daf7d46d76dd102527a48b6243d7e77d4f85b867044de99dfb3b2ddf9b1.exe windows x86
e1cb20fa0322bb22ebbd7c2e76ab113f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
HeapAlloc
GetPrivateProfileIntA
RtlUnwind
CloseHandle
SetEndOfFile
GetStringTypeA
HeapSize
ReleaseMutex
lstrlenA
SetEnvironmentVariableA
OutputDebugStringA
DeleteFileA
WriteFile
GetVersionExA
CopyFileA
lstrcpyA
VirtualAlloc
ExitProcess
GlobalLock
GetModuleHandleA
GetCurrentThreadId
GetTickCount
GetThreadLocale
GlobalUnlock
FindFirstFileA
GetCommandLineA
GetEnvironmentVariableA
TerminateProcess
FreeLibrary
LCMapStringA
UnlockFile
VirtualFree
HeapDestroy
GlobalFree
CreateDirectoryA
GetFileType
TlsFree
GetCPInfo
GetConsoleCP
ExitThread
VirtualProtect
GetSystemDirectoryA
SizeofResource
LoadResource
GetStringTypeW
lstrcpynA
IsBadWritePtr
WideCharToMultiByte
GetFileAttributesA
GetStartupInfoA
TlsSetValue
GetSystemInfo
GetProcessVersion
LockFile
GetPrivateProfileSectionA
GlobalFindAtomA
MultiByteToWideChar
FindResourceA
GetModuleFileNameA
GetFileTime
MulDiv
GlobalDeleteAtom
CreateFileA
GlobalAddAtomA
GetVersion
GlobalReAlloc
lstrcatA
FreeEnvironmentStringsW
GetCurrentThread
IsBadReadPtr
CreateMutexA
DuplicateHandle
FileTimeToSystemTime
GetFullPathNameA
UnhandledExceptionFilter
IsBadCodePtr
lstrcmpiA
HeapReAlloc
GetCurrentDirectoryA
TlsAlloc
SetFilePointer
GetStdHandle
Sleep
LockResource
GetProcAddress
GlobalFlags
GetACP
SetHandleCount
CompareStringA
GetProfileStringA
GetLastError
GetOEMCP
GetDriveTypeA
FreeEnvironmentStringsA
LCMapStringW
InterlockedDecrement
LoadLibraryA
HeapFree
GlobalAlloc
lstrcmpA
FileTimeToLocalFileTime
GetCurrentProcess
lstrlenW
WritePrivateProfileStringA
TlsGetValue
GetEnvironmentStringsW
LocalAlloc
LeaveCriticalSection
GlobalHandle
GetShortPathNameA
GetFileSize
GetTimeZoneInformation
SetFileAttributesA
HeapCreate
FindClose
SetErrorMode
InitializeCriticalSection
ReadFile
FlushFileBuffers
InterlockedIncrement
GetTempPathA
LocalReAlloc
GetPrivateProfileStringA
GlobalGetAtomNameA
GetLocalTime
CompareStringW
SetStdHandle
GetVolumeInformationA
SetUnhandledExceptionFilter
LocalFree
GetEnvironmentStrings
EnterCriticalSection
DeleteCriticalSection
FormatMessageA
RaiseException
SetLastError
user32
BeginPaint
SetActiveWindow
ExcludeUpdateRgn
GetWindowRect
GetForegroundWindow
CharUpperA
GetWindowDC
IsDialogMessageA
PostThreadMessageA
DrawIcon
GetMenuCheckMarkDimensions
LoadImageA
GetIconInfo
GetTopWindow
SetWindowLongA
IsWindowVisible
CallNextHookEx
GetScrollInfo
LoadIconA
RemovePropA
SetWindowTextA
FillRect
MoveWindow
TranslateMessage
GetMessageTime
DrawEdge
PeekMessageA
UnhookWindowsHookEx
DestroyIcon
GetDC
DrawTextA
MapWindowPoints
GetParent
EndDialog
TrackPopupMenuEx
GetCursorPos
ShowCaret
DrawStateA
GetWindowTextLengthA
GetMenuState
CopyAcceleratorTableA
LoadStringA
DrawFocusRect
GetSubMenu
FrameRect
CreateDialogIndirectParamA
LoadBitmapA
SetScrollPos
ModifyMenuA
GetWindowPlacement
BringWindowToTop
GetCapture
LoadCursorA
IsIconic
GetSystemMetrics
InflateRect
GetNextDlgGroupItem
PtInRect
IsWindowEnabled
IntersectRect
ShowWindow
PostQuitMessage
MessageBeep
GetWindow
SetFocus
UpdateWindow
PostMessageA
GetMenuItemCount
SetCursor
GetMenuItemID
GetSysColor
GetClassLongA
GetKeyState
MapDialogRect
SetWindowPos
OffsetRect
GetWindowLongA
GetMessagePos
IsWindow
EnableMenuItem
GetLastActivePopup
IsChild
DestroyMenu
GrayStringA
GetDlgItem
DefWindowProcA
DrawIconEx
SetTimer
LoadMenuA
SetWindowContextHelpId
EndPaint
GetClientRect
GetMenu
SetRect
CharNextA
GetWindowTextA
CreateWindowExA
CreateIconIndirect
CallWindowProcA
WinHelpA
ScreenToClient
DestroyWindow
RegisterClassA
GetClassInfoA
SetMenuItemBitmaps
CopyRect
RedrawWindow
UnregisterClassA
RegisterClipboardFormatA
SetPropA
wsprintfA
GetActiveWindow
ValidateRect
HideCaret
CheckMenuItem
DispatchMessageA
SendMessageA
WindowFromPoint
SendDlgItemMessageA
GetDesktopWindow
TabbedTextOutA
ClientToScreen
KillTimer
GetMessageA
SetScrollInfo
SetForegroundWindow
InvalidateRect
DestroyCursor
DefDlgProcA
GetNextDlgTabItem
SetWindowsHookExA
IsWindowUnicode
ReleaseDC
GetDlgCtrlID
GetFocus
AdjustWindowRectEx
SetWindowRgn
GetSysColorBrush
wvsprintfA
GetPropA
GetClassNameA
MessageBoxA
SystemParametersInfoA
RegisterWindowMessageA
EnableWindow
gdi32
LineTo
CreateCompatibleBitmap
GetPixel
GetWindowExtEx
BitBlt
GetViewportExtEx
GetMapMode
CreateSolidBrush
CombineRgn
OffsetViewportOrgEx
SetViewportOrgEx
FillRgn
CreateRectRgn
GetClipBox
CreateRoundRectRgn
CreatePolygonRgn
SetTextColor
SetBkMode
SetMapMode
GetStockObject
LPtoDP
Escape
Rectangle
FrameRgn
CreateDIBitmap
IntersectClipRect
ScaleViewportExtEx
GetTextExtentPoint32A
CreateCompatibleDC
ScaleWindowExtEx
CreateBitmap
PtVisible
GetCurrentObject
SetPixel
DPtoLP
RestoreDC
CreatePen
DeleteDC
PatBlt
GetTextExtentPointA
SetWindowOrgEx
SetBkColor
SelectObject
DeleteObject
GetDeviceCaps
TextOutA
MoveToEx
CreateFontIndirectA
GetBkColor
GetObjectA
SetViewportExtEx
SetWindowExtEx
RectVisible
SaveDC
ExtTextOutA
GetTextColor
CreateFontA
SelectClipRgn
comdlg32
GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA
advapi32
RegSetValueExA
RegOpenKeyA
RegCloseKey
RegQueryValueA
RegEnumKeyA
RegSetValueA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
AllocateLocallyUniqueId
shell32
SHBrowseForFolderA
ShellExecuteA
SHGetPathFromIDListA
ExtractIconA
ShellExecuteExA
SHGetFileInfoA
ole32
CLSIDFromString
StringFromCLSID
StgCreateDocfileOnILockBytes
CoDisconnectObject
CoTaskMemAlloc
CLSIDFromProgID
OleInitialize
CoTaskMemFree
StgOpenStorageOnILockBytes
CoCreateInstance
CoRevokeClassObject
OleIsCurrentClipboard
CoFreeUnusedLibraries
OleUninitialize
CoGetClassObject
OleRun
OleFlushClipboard
CoRegisterClassObject
CoInitialize
CreateILockBytesOnHGlobal
CoRegisterMessageFilter
oleaut32
GetErrorInfo
LoadTypeLi
SysAllocStringLen
VariantCopy
SysStringByteLen
SysAllocStringByteLen
VariantChangeType
SysStringLen
SysFreeString
SysAllocString
VariantTimeToSystemTime
VariantInit
OleCreateFontIndirect
VariantClear
comctl32
ImageList_SetBkColor
ImageList_AddMasked
ord17
ImageList_GetImageInfo
ImageList_Destroy
_TrackMouseEvent
ImageList_GetBkColor
ImageList_DrawIndirect
ImageList_Create
ImageList_LoadImageA
imm32
ImmAssociateContext
oledlg
ord8
dnsapi
DnsAcquireContextHandle_A
Exports
Exports
Sections
.text Size: 524KB - Virtual size: 524KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.s1 Size: 46KB - Virtual size: 45KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.s2 Size: 213KB - Virtual size: 212KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.s6 Size: - Virtual size: 152KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 824B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.s3 Size: 41KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ