2023-08-27_4612c4b2b67bce50fa18d8cd4f7437a5_mafia_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-27_4612c4b2b67bce50fa18d8cd4f7437a5_mafia_JC.exe
Size

248KB
MD5

4612c4b2b67bce50fa18d8cd4f7437a5
SHA1

62fd2e932b590851da6c375f1db1ab50c4ef3bba
SHA256

886e9e53aa50b5bb906d6d42c9caefcef205b2e249e0ff14e9acbceab27b5290
SHA512

6c0db148f0cd4c4f8e20ebd8c99f50e18c18c9e270609e1ff10914e403aa741d67242150d51db1eb4b1e4825249b5509cd97c00e542447c4c11f7b11dfdf6749
SSDEEP

6144:qbq0bNQwagoh44MUB72K3q3SkUEPCAOydUTDXQTDX7FRFa:o0M4MW7f3q3SMC4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-27_4612c4b2b67bce50fa18d8cd4f7437a5_mafia_JC.exe

Files

2023-08-27_4612c4b2b67bce50fa18d8cd4f7437a5_mafia_JC.exe
.exe windows:5 windows x86

5116044cebcd6167892fb000aa7e80b4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

cudart32_50_35

cudaSetDeviceFlags
cudaMalloc
cudaMemcpy
cudaStreamCreate
cudaMemset
cudaConfigureCall
cudaDeviceSynchronize
cudaStreamDestroy
cudaFree
cudaDeviceReset
__cudaRegisterFatBinary
__cudaRegisterFunction
cudaSetupArgument
cudaHostUnregister
cudaFreeHost
cudaHostRegister
cudaMallocHost
cudaSetDevice
cudaLaunch
__cudaUnregisterFatBinary
cudaGetDeviceCount
cudaGetDeviceProperties

kernel32

LCMapStringW
SetStdHandle
WriteConsoleW
HeapReAlloc
CloseHandle
SetFilePointer
ReadFile
FlushFileBuffers
GetConsoleMode
GetConsoleCP
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetStringTypeW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
HeapSize
GetModuleFileNameW
VirtualAlloc
VirtualFree
QueryPerformanceCounter
QueryPerformanceFrequency
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
MultiByteToWideChar
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
EncodePointer
DecodePointer
GetLastError
HeapFree
RaiseException
GetProcAddress
GetModuleHandleW
ExitProcess
RtlUnwind
HeapAlloc
GetCommandLineA
HeapSetInformation
GetCPInfo
CreateFileW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
IsProcessorFeaturePresent
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapCreate
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
LoadLibraryW
GetLocaleInfoW
WriteFile

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nv_fatb
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nvFatBi
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5116044cebcd6167892fb000aa7e80b4

Headers

DLL Characteristics

File Characteristics

Imports

cudart32_50_35

kernel32

Sections

.text Size: 124KB - Virtual size: 123KB

.rdata Size: 75KB - Virtual size: 75KB

.data Size: 6KB - Virtual size: 14KB

.nv_fatb Size: 29KB - Virtual size: 29KB

.nvFatBi Size: 512B - Virtual size: 16B

.rsrc Size: 512B - Virtual size: 436B

.reloc Size: 10KB - Virtual size: 10KB

.text
Size: 124KB - Virtual size: 123KB

.rdata
Size: 75KB - Virtual size: 75KB

.data
Size: 6KB - Virtual size: 14KB

.nv_fatb
Size: 29KB - Virtual size: 29KB

.nvFatBi
Size: 512B - Virtual size: 16B

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 10KB - Virtual size: 10KB