2024-01-11_b79a97d8bc9e0e584c6d93ef2dee5523_mafia

Sharing

Copy URL

Twitter E-mail

General

Target

2024-01-11_b79a97d8bc9e0e584c6d93ef2dee5523_mafia
Size

1.0MB
MD5

b79a97d8bc9e0e584c6d93ef2dee5523
SHA1

009018223c2747147c1b780a7dbde4cab095f9a5
SHA256

5b1026f4f736b92609923b4117bfc166cadf249c0147fd03959d1a98f2fe1fd3
SHA512

ad5cf6cf346022ddc9912c9b89e096ed8efcde44b9e7bf8193e5cf465ef9a46d59a581aec492b7102c6b61f36196d0d9a29064b2d4d44b470d338eec54c2f9ab
SSDEEP

24576:Lv71QtdvGav9YgQOJgahszCKTT2B7hsLgfrZ:qtdvGWYgxJga9IT2Zggfr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-11_b79a97d8bc9e0e584c6d93ef2dee5523_mafia

Files

2024-01-11_b79a97d8bc9e0e584c6d93ef2dee5523_mafia
.exe windows:5 windows x86 arch:x86

64fb6cc5e83834619af2d3cc3f0258cf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

GradientFill

shlwapi

PathIsDirectoryA

kernel32

GetCurrentProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
IsProcessorFeaturePresent
WriteFile
GetConsoleCP
GetConsoleMode
FlushFileBuffers
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetHandleCount
GetStdHandle
Sleep
GetModuleFileNameW
HeapCreate
TerminateProcess
LoadLibraryW
GetLocaleInfoW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
CloseHandle
CreateFileA
GetCurrentDirectoryW
ReadFile
SetStdHandle
LCMapStringW
GetDriveTypeW
RtlUnwind
SetFilePointer
WriteConsoleW
HeapSize
CompareStringW
SetEnvironmentVariableA
RaiseException
SetEndOfFile
GetProcessHeap
CreateFileW
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetFileType
PeekNamedPipe
GetFileInformationByHandle
HeapWalk
HeapValidate
HeapReAlloc
GetFullPathNameA
GetDateFormatA
GetTimeFormatA
GetFileAttributesA
GetTimeZoneInformation
DeleteFileA
FindFirstFileExA
GetDriveTypeA
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
GetSystemTimeAsFileTime
GetStartupInfoW
HeapSetInformation
GetCommandLineA
InterlockedIncrement
InterlockedDecrement
DecodePointer
ExitProcess
GetModuleHandleW
HeapFree
HeapAlloc
LeaveCriticalSection
EnterCriticalSection
LoadLibraryA
GetProcAddress
ExpandEnvironmentStringsA
GetThreadLocale
GetLocaleInfoA
LocalSize
GlobalAlloc
GlobalLock
GlobalUnlock
GetLastError
GlobalFree
GetPrivateProfileStringA
CreateDirectoryA
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
WritePrivateProfileStringA
GetSystemDirectoryA

user32

CreatePopupMenu
InsertMenuA
RemoveMenu
GetMenuState
CheckMenuItem
TrackPopupMenu
DrawMenuBar
SetMenu
CreateMenu
SetCapture
ReleaseCapture
GetFocus
InvalidateRgn
CallWindowProcA
SetWindowLongA
GetDlgItem
EndDialog
IsDialogMessageA
PeekMessageA
CreateDialogParamA
SetDlgItemTextA
CreateDialogIndirectParamA
LoadImageA
GetDialogBaseUnits
DrawFocusRect
SetScrollPos
SetScrollRange
GetWindowTextLengthA
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
LoadBitmapA
DestroyMenu
GetSystemMetrics
LoadIconA
RegisterClassA
GetWindowLongA
GetUpdateRect
BeginPaint
EndPaint
PostQuitMessage
CheckMenuRadioItem
DefWindowProcA
IsIconic
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
SendMessageA
GetCursorPos
GetActiveWindow
GetWindowWord
ScreenToClient
GetAsyncKeyState
ClientToScreen
SetTimer
KillTimer
UpdateWindow
WinHelpA
DestroyWindow
MessageBeep
ShowWindow
LoadCursorA
SetCursor
GetMenu
GetMenuItemCount
EnableMenuItem
EnableWindow
IsWindowVisible
GetWindowPlacement
wsprintfA
InvalidateRect
GetWindowRect
GetClientRect
SetFocus
GetSystemMenu
DeleteMenu
CreateWindowExA
SetWindowWord
VkKeyScanA
AppendMenuA
AdjustWindowRect
SetWindowPos
GetDC
GetSysColor
FillRect
ReleaseDC
MessageBoxA
IsWindowEnabled
SetMenuItemBitmaps
SetWindowTextA

gdi32

SetROP2
CreatePen
Rectangle
GetTextMetricsA
RealizePalette
SelectPalette
CreateFontA
GetDeviceCaps
GetStockObject
StretchBlt
BitBlt
GetObjectA
PatBlt
CreateCompatibleBitmap
CreateCompatibleDC
ExtCreatePen
Arc
SetPixel
TextOutA
MoveToEx
SetBkMode
DeleteDC
Polygon
Ellipse
SelectClipRgn
CreateRectRgn
GetDIBits
StretchDIBits
Escape
StartDocA
SetAbortProc
StartPage
EndPage
EndDoc
SetPaletteEntries
ResizePalette
CreatePalette
GetSystemPaletteEntries
ExtTextOutA
LineTo
SelectObject
CreateSolidBrush
DeleteObject
SetTextColor
SetBkColor
CreateFontIndirectA
GetTextExtentPointA

shell32

SHGetSpecialFolderPathA

comdlg32

PrintDlgA
ChooseFontA
GetOpenFileNameA
GetSaveFileNameA
ChooseColorA

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

Sections

.text
Size: 718KB - Virtual size: 717KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64fb6cc5e83834619af2d3cc3f0258cf

Headers

DLL Characteristics

File Characteristics

Imports

msimg32

shlwapi

kernel32

user32

gdi32

shell32

comdlg32

advapi32

Sections

.text Size: 718KB - Virtual size: 717KB

.rdata Size: 149KB - Virtual size: 148KB

.data Size: 80KB - Virtual size: 170KB

.rsrc Size: 23KB - Virtual size: 22KB

.reloc Size: 76KB - Virtual size: 76KB

.text
Size: 718KB - Virtual size: 717KB

.rdata
Size: 149KB - Virtual size: 148KB

.data
Size: 80KB - Virtual size: 170KB

.rsrc
Size: 23KB - Virtual size: 22KB

.reloc
Size: 76KB - Virtual size: 76KB