2024-01-01_cc012b1866f0024556d20abd27696757_mafia

Sharing

Copy URL

Twitter E-mail

General

Target

2024-01-01_cc012b1866f0024556d20abd27696757_mafia
Size

2.7MB
MD5

cc012b1866f0024556d20abd27696757
SHA1

cb3385154456de504e894e6a174805573ec3a7f1
SHA256

fc93b5b6fe2b93a970c825210edf2640d8efb98ad493a8499a87b8c7cf018999
SHA512

746e2ca01ea4d3bdb31d8635fd4d09d4f56911735ad3149ccf7b5e3503f356c31223b9a74b703c61b4ecfe524ae8557cbfa3bb8558be56e36f836f1b4149af51
SSDEEP

49152:QKtCX2jHMIRTWot8ifC27m8DhXKcmDtXXo3y7P1v6KMtrpViPMd2cgUOa26wFLXX:QKi+fRyon7m2XKcmDtX43c9CVpgPMIU6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-01_cc012b1866f0024556d20abd27696757_mafia

Files

2024-01-01_cc012b1866f0024556d20abd27696757_mafia
.exe windows:5 windows x86 arch:x86

c3693f103740ff3fe963aca9a0edd6ad

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSetInformation
GetStartupInfoW
EncodePointer
DecodePointer
RtlUnwind
RaiseException
ExitProcess
ExitThread
HeapQueryInformation
VirtualQuery
SetStdHandle
GetFileType
SetUnhandledExceptionFilter
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetNumberFormatW
GetACP
GetOEMCP
IsValidCodePage
GetStringTypeW
GetTimeZoneInformation
LCMapStringW
GetConsoleCP
GetConsoleMode
SetEnvironmentVariableA
GetDriveTypeW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
WriteConsoleW
GetWindowsDirectoryW
SearchPathW
FindResourceExW
GetUserDefaultLCID
GetFileAttributesA
GetProfileIntW
GetFileTime
GetCPInfo
VirtualProtect
GetTempFileNameW
SetErrorMode
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
lstrcmpiW
GlobalFindAtomW
InitializeCriticalSectionAndSpinCount
GlobalFlags
GetVersionExW
GetSystemDirectoryW
GetCurrentDirectoryW
GetThreadLocale
GlobalGetAtomNameW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
CompareStringW
ReleaseActCtx
CreateActCtxW
ReleaseMutex
GlobalAddAtomW
ResumeThread
SetThreadPriority
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
lstrcpyW
FreeResource
lstrcmpA
GlobalDeleteAtom
GetCurrentThread
GetModuleFileNameW
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
ActivateActCtx
DeactivateActCtx
lstrcmpW
GetLocaleInfoW
LoadLibraryExW
InterlockedExchange
FileTimeToLocalFileTime
FileTimeToSystemTime
GetModuleHandleW
FindFirstFileW
FindNextFileW
GlobalFree
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
MulDiv
InterlockedIncrement
AreFileApisANSI
GetSystemTime
GetTempPathA
GetCurrentProcessId
GetVersionExA
GetDiskFreeSpaceA
CreateFileMappingW
LoadLibraryA
GetDiskFreeSpaceW
LockFileEx
HeapSize
GetProcAddress
GetTempPathW
FlushFileBuffers
CreateFileW
HeapValidate
HeapCreate
HeapDestroy
LoadLibraryW
FormatMessageA
GetSystemTimeAsFileTime
UnlockFileEx
LockFile
UnlockFile
InterlockedCompareExchange
HeapFree
QueryPerformanceCounter
SystemTimeToFileTime
HeapAlloc
FreeLibrary
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
CreateMutexW
GetFileSize
HeapReAlloc
GetFullPathNameA
GetFullPathNameW
CopyFileW
DeleteFileW
GetFileAttributesExW
LocalFree
FormatMessageW
lstrlenW
LocalAlloc
InterlockedDecrement
GetPrivateProfileSectionA
GetCommandLineW
OutputDebugStringW
lstrlenA
CreateThread
GetCurrentThreadId
FindNextFileA
GetSystemInfo
FindClose
VirtualAlloc
SetLastError
FindFirstFileA
Sleep
GetTickCount
GetFileSizeEx
ReadFile
WriteFile
SetFilePointer
CreateFileA
SetFileAttributesW
CreateDirectoryA
MultiByteToWideChar
GetFileAttributesW
CloseHandle
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
WaitForSingleObject
OutputDebugStringA
GetLastError
DeleteFileA
WritePrivateProfileStringA
RemoveDirectoryA
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
GetPrivateProfileIntA
IsProcessorFeaturePresent

user32

FrameRect
IsClipboardFormatAvailable
SetMenuDefaultItem
CreateMenu
IsMenu
UpdateLayeredWindow
EnableScrollBar
MonitorFromPoint
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
UnionRect
GetKeyNameTextW
CreateDialogIndirectParamW
EndDialog
LockWindowUpdate
SetCursorPos
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyW
ToUnicodeEx
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
DrawStateW
GetSystemMenu
SetClassLongW
GetAsyncKeyState
NotifyWinEvent
DestroyAcceleratorTable
SetParent
SetWindowRgn
IsZoomed
GetMenuItemInfoW
InflateRect
UnpackDDElParam
ReuseDDElParam
LoadMenuW
DestroyMenu
LoadImageW
LoadAcceleratorsW
InsertMenuItemW
CreatePopupMenu
BringWindowToTop
TranslateAcceleratorW
UnregisterClassW
CharUpperW
DestroyIcon
IsIconic
LoadIconW
SendDlgItemMessageA
WinHelpW
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
DestroyWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
RedrawWindow
GetUpdateRect
GetClassInfoExW
RegisterClassW
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
CallWindowProcW
GetMenu
PostThreadMessageW
MessageBeep
IsChild
GetTopWindow
GetNextDlgTabItem
GetNextDlgGroupItem
InvalidateRgn
EqualRect
IntersectRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
OffsetRect
CharNextW
SetFocus
ShowWindow
MoveWindow
SetWindowLongW
IsWindow
IsDialogMessageW
SendDlgItemMessageW
GetDlgItem
CheckDlgButton
KillTimer
SetTimer
InvalidateRect
UpdateWindow
RealChildWindowFromPoint
GetDlgCtrlID
GetWindowRect
GetClassNameW
PtInRect
SetWindowTextW
RemoveMenu
GetSubMenu
GetMenuItemCount
InsertMenuW
GetMenuItemID
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
GetClassInfoW
DefWindowProcW
MapWindowPoints
GetClientRect
SetLayeredWindowAttributes
EnumDisplayMonitors
SystemParametersInfoW
GetMenuDefaultItem
OpenClipboard
SetClipboardData
CloseClipboard
EmptyClipboard
CopyIcon
CharUpperBuffW
GetDoubleClickTime
GetIconInfo
IsCharLowerW
MapVirtualKeyExW
SubtractRect
HideCaret
InvertRect
GetMonitorInfoW
SetRectEmpty
CopyRect
DeleteMenu
WaitMessage
GetDesktopWindow
ReleaseCapture
GetCapture
WindowFromPoint
SetCapture
ScreenToClient
GetWindowRgn
DestroyCursor
DrawIcon
CreateWindowExW
AppendMenuW
GetMenuStringW
GetMenuState
PostMessageW
PostQuitMessage
SetWindowPos
MapDialogRect
GetParent
SetWindowContextHelpId
GetWindow
SendMessageW
RegisterWindowMessageW
RegisterClipboardFormatW
CheckMenuItem
EnableMenuItem
ModifyMenuW
GetFocus
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
ValidateRect
GetCursorPos
PeekMessageW
GetKeyState
IsWindowVisible
GetActiveWindow
DispatchMessageW
TranslateMessage
GetMessageW
CallNextHookEx
SetWindowsHookExW
SetCursor
ShowOwnedPopups
MessageBoxW
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetWindowLongW
GetWindowThreadProcessId
GetSysColorBrush
GetSysColor
ReleaseDC
GetDC
GetSystemMetrics
LoadCursorW
UnhookWindowsHookEx
GetWindowTextW
GetWindowTextLengthW
ClientToScreen
CopyImage

gdi32

CreateHatchBrush
GetBkColor
GetTextColor
GetRgnBox
GetTextExtentPoint32W
CreateDIBSection
CreateRoundRectRgn
CreatePolygonRgn
CombineRgn
PatBlt
CreateEllipticRgn
Polyline
Ellipse
Polygon
SetRectRgn
GetMapMode
DPtoLP
OffsetRgn
SetDIBColorTable
RealizePalette
StretchBlt
SetPixel
Rectangle
CreatePalette
GetNearestPaletteIndex
GetSystemPaletteEntries
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
EnumFontFamiliesExW
GetTextFaceW
SetPixelV
GetPixel
GetWindowExtEx
GetViewportExtEx
GetObjectType
SelectPalette
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetPaletteEntries
GetDeviceCaps
CreateRectRgn
SelectClipRgn
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
DeleteObject
GetTextCharsetInfo
EnumFontFamiliesW
GetTextMetricsW
BitBlt
CreateCompatibleDC
CreateRectRgnIndirect
CreateCompatibleBitmap
GetObjectW
CreateFontIndirectW
CreatePatternBrush
CreateSolidBrush
CreatePen
GetStockObject
CreateDIBitmap
CreateBitmap
CreateDCW
CopyMetaFileW

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegCloseKey
RegEnumKeyExW
RegEnumValueW

shell32

ShellExecuteW
CommandLineToArgvW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
SHAppBarMessage
DragQueryFileW
DragFinish
SHGetFileInfoW
SHFileOperationA

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
PathFindExtensionW
PathFileExistsA

ole32

OleCreateMenuDescriptor
CoInitializeEx
CreateStreamOnHGlobal
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoUninitialize
OleDestroyMenuDescriptor
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromProgID
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
OleTranslateAccelerator
IsAccelerator
OleLockRunning
DoDragDrop
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
CoInitialize
CoTaskMemFree
StringFromCLSID
CLSIDFromString
OleRun
CoCreateInstance
CoCreateGuid

oleaut32

VariantInit
VariantClear
VariantChangeType
VariantCopy
SysStringLen
SysAllocStringLen
SysAllocString
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
OleCreateFontIndirect
SysFreeString
GetErrorInfo

oledlg

OleUIBusyW

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 388KB - Virtual size: 387KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3693f103740ff3fe963aca9a0edd6ad

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 2.0MB - Virtual size: 2.0MB

.rdata Size: 388KB - Virtual size: 387KB

.data Size: 35KB - Virtual size: 69KB

.rsrc Size: 80KB - Virtual size: 79KB

.reloc Size: 204KB - Virtual size: 204KB

.text
Size: 2.0MB - Virtual size: 2.0MB

.rdata
Size: 388KB - Virtual size: 387KB

.data
Size: 35KB - Virtual size: 69KB

.rsrc
Size: 80KB - Virtual size: 79KB

.reloc
Size: 204KB - Virtual size: 204KB