2024-01-01_68fba692e7f0b80c28b92c55673f1e5e_mafia

Sharing

Copy URL

Twitter E-mail

General

Target

2024-01-01_68fba692e7f0b80c28b92c55673f1e5e_mafia
Size

416KB
MD5

68fba692e7f0b80c28b92c55673f1e5e
SHA1

be0d4b41255af6b71e4850932eb52dc946fee59c
SHA256

a9a0e63b6ef56fc5325286aa1d9bffad1de222e6284a9670d6372adc50d24955
SHA512

0990389f114b4199d6facb76697b61218ab073f9f669b7d1bea67d7cd04f994a8f2b6d9d1832bdc453aad4882037b5fe51e1d0470c39cb909f0a68b40051a94a
SSDEEP

12288:KRqDHB4XcoWE29o61IuUoMfna/OFf3Mc:KRmB4Xce8o61UoMfna2Ff8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-01_68fba692e7f0b80c28b92c55673f1e5e_mafia

Files

2024-01-01_68fba692e7f0b80c28b92c55673f1e5e_mafia
.exe windows:5 windows x86 arch:x86

7d6bd73015da3bb4471a413a1a31826a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
TerminateProcess
WideCharToMultiByte
MultiByteToWideChar
CopyFileW
DeleteFileW
SetFileAttributesW
GetFileAttributesW
IsDBCSLeadByte
GetModuleFileNameW
FindClose
WaitForSingleObject
CreateProcessW
GetCurrentThreadId
CompareStringW
GetTickCount
GetProcessHeap
SetEndOfFile
WriteConsoleW
LoadLibraryW
HeapReAlloc
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
FlushFileBuffers
HeapSize
SetStdHandle
SetFilePointer
GetCurrentDirectoryW
PeekNamedPipe
GetFileInformationByHandle
GetFullPathNameW
IsValidCodePage
GetOEMCP
GetACP
GetConsoleMode
GetConsoleCP
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
FreeResource
LockResource
LoadResource
SizeofResource
GetLastError
FindResourceW
GetModuleHandleW
WriteFile
CloseHandle
ReadFile
GetFileSize
Sleep
CreateFileW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetTimeZoneInformation
InitializeCriticalSection
HeapCreate
GetLocaleInfoW
GetStdHandle
InitializeCriticalSectionAndSpinCount
IsProcessorFeaturePresent
ExitProcess
SetEnvironmentVariableA
GetProcAddress
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LCMapStringW
GetCPInfo
MoveFileW
FindFirstFileExW
GetDriveTypeW
FileTimeToLocalFileTime
FileTimeToSystemTime
RtlUnwind
RaiseException
HeapAlloc
GetStartupInfoW
HeapSetInformation
GetCommandLineW
HeapFree
CreateThread
ExitThread
DecodePointer
EncodePointer
InterlockedIncrement
InterlockedDecrement
GetStringTypeW
InterlockedCompareExchange
InterlockedExchange

user32

SetRect
GetSystemMetrics
SetWindowPos
MessageBoxA
BeginPaint
EndPaint
PeekMessageW
TranslateMessage
DispatchMessageW
SendMessageW
MessageBoxW
SetWindowTextW
GetDC
ReleaseDC
GetWindowRect
LoadBitmapW
GetWindowLongW
ShowWindow
CreateDialogParamW
PostQuitMessage
DestroyWindow
UnregisterClassW
GetDlgCtrlID
SetWindowRgn
SetDlgItemTextW
ReleaseCapture
SetCapture
SystemParametersInfoW
SetWindowLongW

gdi32

GetDIBits
ExtCreateRegion
DeleteObject
CreateFontW
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
GetObjectW
CreateICW

winmm

timeGetTime

wininet

HttpQueryInfoW
InternetOpenUrlW
InternetOpenW
InternetQueryDataAvailable
InternetCloseHandle
InternetReadFile

Sections

.text
Size: 184KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d6bd73015da3bb4471a413a1a31826a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winmm

wininet

Sections

.text Size: 184KB - Virtual size: 184KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 7KB - Virtual size: 15KB

.rsrc Size: 176KB - Virtual size: 176KB

.reloc Size: 15KB - Virtual size: 14KB

.text
Size: 184KB - Virtual size: 184KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 7KB - Virtual size: 15KB

.rsrc
Size: 176KB - Virtual size: 176KB

.reloc
Size: 15KB - Virtual size: 14KB