2023-08-22_9e56fb4e41a8d535e647c939f8485c9e_mafia_JC[.]exe | Triage

Sharing

General

Target

2023-08-22_9e56fb4e41a8d535e647c939f8485c9e_mafia_JC.exe
Size

3.6MB
MD5

9e56fb4e41a8d535e647c939f8485c9e
SHA1

2104a9b0183d3370e78e489ff244585b0661b105
SHA256

c62dc1f91e01ec7f83c9ba201a3187bf683084016d6fe7c8967811c6b0f11545
SHA512

729ece862ccb3e5bbda5385bdea345582bfb267fdf438de99921a58abc5c9bf2f8516e21df8e90eb9c3fff0e1468a6c8b4ce289fd471b083ec40d58a4d82f91a
SSDEEP

98304:/96ft11wT3TDQX8JN9GV87sD6POYZHAhWtGDrf9Odqu/zxSLHC6gV+:/96fb1wTQWIiPXAhWUO5/6gV+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-22_9e56fb4e41a8d535e647c939f8485c9e_mafia_JC.exe

Files

2023-08-22_9e56fb4e41a8d535e647c939f8485c9e_mafia_JC.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 507KB - Virtual size: 507KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 295KB - Virtual size: 295KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ