2023-08-26_012e1b108d1965b0d095c34879e5ba30_mafia_JC[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

2023-08-26_012e1b108d1965b0d095c34879e5ba30_mafia_JC.exe
Size

8.5MB
MD5

012e1b108d1965b0d095c34879e5ba30
SHA1

ed291e93c1529c0a2444c7599c12a9237b864835
SHA256

788317a99d3cf86d1aa5bb8450333d13b62d8236eed75524e89c4411d2ed0cef
SHA512

3fd7a0f475b6666b81d023eeca13de8b9f2161e5740a567806b6c6b7edf3b67f7511ca98f7e131d2e545f420c9c3d4d2f089f6543f6611bec188caa2c9b248ba
SSDEEP

98304:h8IF7LJavgdIf1wYEmocJV9wZpWMstejkQJKiccWWwjcq1T91E3FIKhp2MfFF/2K:h8IF7LjoJiHnjkQJK5cYhGT/2WOV2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-26_012e1b108d1965b0d095c34879e5ba30_mafia_JC.exe

Files

2023-08-26_012e1b108d1965b0d095c34879e5ba30_mafia_JC.exe
.exe windows:5 windows x86

3080ef81c6a21ea5fe546d21a6f714b7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAddAtomA
GetCurrentProcessId
FreeResource
FindResourceA
ReleaseActCtx
GetModuleFileNameW
InterlockedDecrement
lstrcmpW
LoadLibraryW
GetVersionExA
GlobalFindAtomA
GlobalGetAtomNameA
InterlockedIncrement
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
GlobalFlags
GetSystemDirectoryW
GetThreadLocale
lstrcmpiA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetCurrentProcess
GetVolumeInformationA
GetFullPathNameA
FileTimeToSystemTime
GetACP
GetCPInfo
GetOEMCP
SetErrorMode
GetFileAttributesExA
FileTimeToLocalFileTime
GetFileAttributesA
GetFileSizeEx
GetFileTime
GetTempFileNameA
GetTempPathA
GetWindowsDirectoryA
GetNumberFormatA
GetTickCount
InitializeCriticalSectionAndSpinCount
GetProfileIntA
Sleep
SearchPathA
VirtualProtect
GetUserDefaultLCID
FindResourceExW
RtlUnwind
EncodePointer
DecodePointer
GetPrivateProfileStringA
RaiseException
GetSystemTimeAsFileTime
SetEnvironmentVariableA
SetCurrentDirectoryA
GetCommandLineA
HeapSetInformation
GetStartupInfoW
HeapAlloc
VirtualAlloc
GetSystemInfo
VirtualQuery
ExitProcess
ExitThread
HeapReAlloc
HeapQueryInformation
HeapSize
SetStdHandle
GetFileType
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
IsValidCodePage
LCMapStringW
IsProcessorFeaturePresent
HeapCreate
SetHandleCount
GetStdHandle
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetLocaleInfoW
GetStringTypeW
CompareStringW
GetTimeZoneInformation
WriteConsoleW
EnumSystemLocalesA
IsValidLocale
CreateFileW
WaitForSingleObject
ResumeThread
SetThreadPriority
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
GetModuleFileNameA
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoA
LoadLibraryExA
CompareStringA
ActivateActCtx
LoadLibraryA
DeactivateActCtx
InterlockedExchange
lstrcmpA
GetModuleHandleW
GetProcAddress
FreeLibrary
SetLastError
GlobalFree
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
lstrlenW
MultiByteToWideChar
MulDiv
WritePrivateProfileStringA
GetPrivateProfileIntA
HeapFree
GetModuleHandleA
DeleteFileA
FindNextFileA
GetLogicalDriveStringsA
GetDriveTypeA
CreateThread
CopyFileA
CreateFileA
GetFileSize
lstrlenA
lstrcpyA
FindFirstFileA
FindClose
WideCharToMultiByte
FindResourceW
LoadResource
LockResource
SizeofResource
CreateMutexA
GetLastError
GetCurrentDirectoryA
CreateActCtxW
CloseHandle
GetProcessHeap

user32

SetWindowRgn
RedrawWindow
SetParent
DestroyAcceleratorTable
NotifyWinEvent
GetAsyncKeyState
SetClassLongA
DrawStateA
DrawIconEx
DrawEdge
DrawFrameControl
DrawFocusRect
ToAsciiEx
MapVirtualKeyA
GetKeyboardLayout
GetKeyboardState
LoadAcceleratorsW
CreateAcceleratorTableA
SetCursorPos
BringWindowToTop
LockWindowUpdate
TranslateAcceleratorA
InsertMenuItemA
LoadAcceleratorsA
LoadImageA
LoadMenuA
ReuseDDElParam
UnpackDDElParam
GetMenuDefaultItem
InvertRect
HideCaret
EnableScrollBar
GetIconInfo
CopyImage
RegisterClipboardFormatA
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
MonitorFromPoint
UnionRect
UpdateLayeredWindow
IsMenu
CreateMenu
PostThreadMessageA
SetMenuDefaultItem
IsClipboardFormatAvailable
FrameRect
GetUpdateRect
OpenClipboard
SetClipboardData
CloseClipboard
EmptyClipboard
LoadImageW
CopyIcon
CharUpperBuffA
GetDoubleClickTime
IsCharLowerA
GetKeyNameTextA
MapVirtualKeyExA
SubtractRect
DestroyCursor
GetWindowRgn
SendDlgItemMessageA
CheckDlgButton
SystemParametersInfoA
DestroyMenu
GetMenuItemInfoA
InflateRect
IsZoomed
GetSysColor
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
ScreenToClient
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
UnhookWindowsHookEx
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
CopyAcceleratorTableA
GetNextDlgTabItem
EndDialog
GetWindowThreadProcessId
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
ShowOwnedPopups
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
PeekMessageA
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
GetFocus
ModifyMenuA
GetMenuState
GetMenuStringA
GetMenuItemID
InsertMenuA
GetMenuItemCount
RemoveMenu
RegisterWindowMessageA
LoadIconA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetMessageTime
GetPropA
RemovePropA
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
IsDialogMessageA
GetMessagePos
MonitorFromWindow
GetMonitorInfoA
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
UpdateWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
EqualRect
UnregisterClassA
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
SetRect
IntersectRect
IsRectEmpty
DeferWindowPos
GetScrollInfo
SetScrollInfo
OffsetRect
CharNextA
CharUpperA
DestroyIcon
WaitMessage
ReleaseCapture
SetCapture
LoadCursorW
SetLayeredWindowAttributes
SetWindowLongA
SetCursor
LoadCursorA
GetParent
PtInRect
MessageBoxA
EnableMenuItem
GetDC
ClientToScreen
CheckMenuItem
PostQuitMessage
GetSystemMetrics
GetCursorPos
CloseWindow
LoadIconW
EnableWindow
SetWindowPlacement
GetWindowPlacement
DefWindowProcA
CallWindowProcA
GetMenu
SetForegroundWindow
KillTimer
SetTimer
InvalidateRect
GetClientRect
GetWindowRect
IsIconic
GetSystemMenu
PostMessageA
LoadMenuW
GetSubMenu
AppendMenuA
CreatePopupMenu
DrawIcon
LoadBitmapW
FindWindowA
IsWindowVisible
SendMessageA
EnumDisplayMonitors
SetRectEmpty
RealChildWindowFromPoint
DeleteMenu
GetSysColorBrush
GetDlgItem
WindowFromPoint
GetWindowTextLengthA
GetWindowTextA
SetFocus
ShowWindow
MoveWindow
GetDlgCtrlID
CopyRect
SetWindowTextA

gdi32

LineTo
IntersectClipRect
ExcludeClipRect
MoveToEx
SetMapMode
SetTextColor
GetClipBox
SetTextAlign
SetPixelV
GetTextFaceA
CreateFontIndirectA
GetObjectA
CreateCompatibleDC
BitBlt
GetCurrentObject
CreateSolidBrush
CreateCompatibleBitmap
GetStockObject
SetPaletteEntries
ExtFloodFill
GetBoundsRect
FrameRgn
FillRgn
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
LPtoDP
EnumFontFamiliesExA
Rectangle
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
CreateBitmap
CreateDCA
GetDeviceCaps
SetPixel
StretchBlt
SetDIBColorTable
OffsetRgn
GetSystemPaletteEntries
RealizePalette
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
Polygon
Ellipse
Polyline
CreateEllipticRgn
CreatePolygonRgn
CreateRoundRectRgn
CreateDIBSection
GetRgnBox
GetTextColor
GetBkColor
GetTextCharsetInfo
EnumFontFamiliesA
GetTextMetricsA
CreateDIBitmap
DPtoLP
PatBlt
GetMapMode
CombineRgn
SetRectRgn
CreateRectRgnIndirect
GetTextExtentPoint32A
CreateHatchBrush
CreatePen
GetObjectType
GetLayout
SelectPalette
CreatePatternBrush
SetLayout
DeleteObject
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CopyMetaFileA

shell32

SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetFileInfoA
DragAcceptFiles
Shell_NotifyIconA
ShellExecuteA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc
DragQueryFileA
DragQueryPoint
DragFinish
SHAppBarMessage

msimg32

TransparentBlt
AlphaBlend

comctl32

ImageList_GetIconSize

shlwapi

PathFindExtensionA
PathFindFileNameA
PathRemoveFileSpecW
PathStripToRootA
PathIsUNCA

oledlg

ord8

msvfw32

MCIWndCreateA

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipCreateBitmapFromStream
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipGetImageGraphicsContext
GdipDrawImageI
GdipDrawImageRectI

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

comdlg32

GetFileTitleA

advapi32

RegOpenKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegQueryValueExA
RegEnumKeyExA
RegCreateKeyExA
RegSetValueExA

ole32

OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
CoRevokeClassObject
CoRegisterMessageFilter
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CoTaskMemFree
CreateStreamOnHGlobal
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoInitialize
CoInitializeEx
CoCreateInstance
CoUninitialize
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium

oleaut32

SysStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocStringByteLen
SysFreeString
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
OleCreateFontIndirect
SysAllocString
SysAllocStringLen

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 290KB - Virtual size: 289KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6.8MB - Virtual size: 6.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 189KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3080ef81c6a21ea5fe546d21a6f714b7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

msimg32

comctl32

shlwapi

oledlg

msvfw32

oleacc

gdiplus

imm32

winmm

winspool.drv

comdlg32

advapi32

ole32

oleaut32

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 290KB - Virtual size: 289KB

.data Size: 26KB - Virtual size: 63KB

.rsrc Size: 6.8MB - Virtual size: 6.8MB

.reloc Size: 189KB - Virtual size: 188KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 290KB - Virtual size: 289KB

.data
Size: 26KB - Virtual size: 63KB

.rsrc
Size: 6.8MB - Virtual size: 6.8MB

.reloc
Size: 189KB - Virtual size: 188KB