2024-01-01_3c62f1bb2704d3d98c74d8a7a1c9b90c_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-01_3c62f1bb2704d3d98c74d8a7a1c9b90c_mafia
Size

402KB
MD5

3c62f1bb2704d3d98c74d8a7a1c9b90c
SHA1

8f6cd1c1982c8bdba897b9adca94f7990c9eeecf
SHA256

be6ea3cba61fc41a62ee12c3304651ff61c83cd2dc8b5f56838c2435258522ce
SHA512

887252b3879e0b0d2046382ebe18973ed961671c80f0c74660eb0407f1d272ca185d51fd3588078f152ffc75b61c83dc842dfacd3dbba7020d15e459cd6376d1
SSDEEP

6144:vdMIZ2zzUn+eN9NopQi8ZxocCUjCCAO29wTDXlXTDXxtzFkxFCwKFCkKFwXOQFIP:VwzUbNqQicxoTC8KN4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-01_3c62f1bb2704d3d98c74d8a7a1c9b90c_mafia

Files

2024-01-01_3c62f1bb2704d3d98c74d8a7a1c9b90c_mafia
.exe windows:5 windows x86 arch:x86

e06d917990d1ffbce19e1f723d82159e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

glew32

__glewMapBuffer
__glewUnmapBuffer
glewInit
glewIsSupported
__glewGenBuffers
__glewBufferData
__glewBindBuffer
__glewDeleteBuffers

freeglut

glutCloseFunc
glutMainLoop
glutInit
glutInitDisplayMode
glutInitWindowSize
glutCreateWindow
glutDisplayFunc
glutKeyboardFunc
glutMotionFunc
glutSwapBuffers
glutPostRedisplay
glutTimerFunc
glutSetWindowTitle
glutMouseFunc

kernel32

GetSystemTimeAsFileTime
GetTickCount
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
GetEnvironmentStringsW
IsValidLocale
FreeEnvironmentStringsW
SetFilePointer
ReadFile
HeapSize
FlushFileBuffers
GetConsoleMode
GetConsoleCP
GetStartupInfoW
SetHandleCount
LoadLibraryW
IsValidCodePage
GetOEMCP
QueryPerformanceFrequency
QueryPerformanceCounter
GetProcAddress
FreeLibrary
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
TryEnterCriticalSection
LeaveCriticalSection
GetCurrentProcessId
GetCurrentThreadId
CloseHandle
CreateFileA
GetLastError
GetModuleFileNameA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapCreate
LocalAlloc
GetSystemDirectoryW
CreateFileW
GetProcessHeap
GetModuleHandleW
SetLastError
LoadLibraryExW
GetModuleFileNameW
GetACP
GetLocaleInfoW
WriteFile
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
LCMapStringW
InitializeCriticalSectionAndSpinCount
SetStdHandle
SetEndOfFile
SwitchToThread
LocalFree
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
MultiByteToWideChar
EncodePointer
DecodePointer
ExitProcess
RtlUnwind
WriteConsoleW
GetFileType
GetStdHandle
RaiseException
GetCommandLineA
HeapSetInformation

opengl32

glClearColor
glDisable
glViewport
glClear
glMatrixMode
glLoadIdentity
glTranslatef
glRotatef
glVertexPointer
glEnableClientState
glColor3f
glDrawArrays
glDisableClientState
glGetError

glu32

gluPerspective
gluErrorString

Exports

Exports

NvOptimusEnablementCuda

Sections

.text
Size: 181KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nv_fatb
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nvFatBi
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e06d917990d1ffbce19e1f723d82159e

Headers

DLL Characteristics

File Characteristics

Imports

glew32

freeglut

kernel32

opengl32

glu32

Exports

Exports

Sections

.text Size: 181KB - Virtual size: 181KB

.rdata Size: 100KB - Virtual size: 99KB

.data Size: 7KB - Virtual size: 17KB

.nv_fatb Size: 94KB - Virtual size: 94KB

.nvFatBi Size: 512B - Virtual size: 16B

.rsrc Size: 512B - Virtual size: 436B

.reloc Size: 17KB - Virtual size: 16KB

.text
Size: 181KB - Virtual size: 181KB

.rdata
Size: 100KB - Virtual size: 99KB

.data
Size: 7KB - Virtual size: 17KB

.nv_fatb
Size: 94KB - Virtual size: 94KB

.nvFatBi
Size: 512B - Virtual size: 16B

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 17KB - Virtual size: 16KB