cb759df1725218918e948e3944039753_mafia_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb759df1725218918e948e3944039753_mafia_JC.exe
Size

10.0MB
MD5

cb759df1725218918e948e3944039753
SHA1

048bf63e1575efeef2a596dfef6ebc1085cdf6c7
SHA256

7f338977cebf2181b9514e149b361b4fad2586d8ce0d9e68b8c1b0a3a8832ef3
SHA512

7572e839eb454231f3f49ef2012e6c80cebb13342a0ff7bc03ae75f8d4a0733f903edccb8d3574cf44b9ad244069a9e8ff6a6cdc529337844ac34107983148d7
SSDEEP

196608:A4tCPn7vWht+QHIGD+gVBOhsErOLdmQZudvhw5kyg:qpsmQyKW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb759df1725218918e948e3944039753_mafia_JC.exe

Files

cb759df1725218918e948e3944039753_mafia_JC.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 6.8MB - Virtual size: 6.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7.2MB - Virtual size: 7.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qtmetad
Size: 512B - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5.6MB - Virtual size: 5.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 329KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ