89333738292ae456b34a0027e057d8f5_mafia_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

89333738292ae456b34a0027e057d8f5_mafia_JC.exe
Size

332KB
MD5

89333738292ae456b34a0027e057d8f5
SHA1

c54568b92330b16953de4d0f922ca33d42a6db2a
SHA256

9db238125c4edde646d3059cce9b20142026abdaf38f9a6e61ce7c370a117772
SHA512

972110065bf7188d4d32a4e17f34229eb18817cadbd30470ba1cd2c07719b5d0603b9915857ca4bf8bd4f5962daf264c06947b18173adbe38b7d130116692dee
SSDEEP

6144:X6114h08ng9aChe2+WwqlhhCmMFfUskeH8c87xv+bQYHKVzWTPrvr:q1142sChe2jhCFfvNH8c87x2bDKQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89333738292ae456b34a0027e057d8f5_mafia_JC.exe

Files

89333738292ae456b34a0027e057d8f5_mafia_JC.exe
.exe windows x86

285ef1ee25868adb73e72303fd540efd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetPixelFormat
GetDeviceCaps
GetStretchBltMode
GetNearestPaletteIndex
SetTextCharacterExtra
GetMetaRgn
GetObjectType
GetTextAlign
GetMapMode
GetFontUnicodeRanges
GetBkColor
GetFontLanguageInfo
SetPixel
GetTextCharsetInfo
UpdateColors
SetTextAlign
SetTextColor
SetSystemPaletteUse
SetTextJustification
GetRandomRgn
GetTextCharset
GetClipRgn
GetTextCharacterExtra
GetTextColor
GetDCBrushColor

user32

IsWindowUnicode
GetDlgItemInt
CheckDlgButton
GetMenuItemID
GetMenuContextHelpId
SendMessageA
GetScrollPos
GetDialogBaseUnits
GetMenuItemCount
GetWindowDC
SetDlgItemTextA
GetWindowContextHelpId
BeginPaint
GetMenu
GetDlgItem
LoadIconA
GetMenuState
GetWindowLongA
GetInputState
ShowWindow
DrawTextA
PostMessageA
MoveWindow
GetMenuCheckMarkDimensions
EndPaint
GetDC
GetForegroundWindow
SetWindowTextA
EndDialog
WindowFromDC
GetPropA
GetKeyboardType
IsWindowEnabled
EnableWindow

kernel32

SetEnvironmentVariableA
CompareStringW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
CreateFileW
HeapReAlloc
GetStringTypeW
HeapSize
WriteConsoleW
LCMapStringW
GetTimeZoneInformation
ReadFile
MultiByteToWideChar
SetEndOfFile
SetStdHandle
GetDriveTypeW
Sleep
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetLocaleInfoW
LoadLibraryW
InterlockedExchange
FreeLibrary
SetConsoleCtrlHandler
RtlUnwind
SetHandleCount
EnterCriticalSection
FatalAppExitA
GetProcAddress
MoveFileA
GetLastError
WriteFile
SizeofResource
DeleteFileA
GlobalAlloc
GetModuleHandleA
LocalFlags
QueryPerformanceCounter
GlobalHandle
FlushFileBuffers
GetCurrentProcessId
GetDriveTypeA
LoadResource
FindResourceA
GetProcessHeap
GetCurrentProcess
SetFilePointer
GetTickCount
GetStdHandle
LockResource
GetVersion
IsDebuggerPresent
GetCurrentThreadId
GlobalFlags
IsProcessorFeaturePresent
CloseHandle
CreateThread
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
EncodePointer
DecodePointer
TerminateProcess
HeapFree
HeapAlloc
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileExA
GetModuleHandleW
ExitProcess
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
HeapCreate
HeapDestroy
GetModuleFileNameW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThread
GetFullPathNameA
GetFileInformationByHandle
PeekNamedPipe
GetFileType
CreateFileA
GetCurrentDirectoryW
SetCurrentDirectoryW
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection

Sections

.text
Size: 263KB - Virtual size: 263KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

285ef1ee25868adb73e72303fd540efd

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 263KB - Virtual size: 263KB

.rdata Size: 41KB - Virtual size: 40KB

.data Size: 7KB - Virtual size: 18KB

.reloc Size: 19KB - Virtual size: 19KB

.text
Size: 263KB - Virtual size: 263KB

.rdata
Size: 41KB - Virtual size: 40KB

.data
Size: 7KB - Virtual size: 18KB

.reloc
Size: 19KB - Virtual size: 19KB