2024-01-18_a34356892a35895e97db98428e0f4481_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-18_a34356892a35895e97db98428e0f4481_mafia
Size

326KB
MD5

a34356892a35895e97db98428e0f4481
SHA1

398a6f88e8fdcf85f2bdf36bed91535b65e3bca8
SHA256

3f23b5e38bbee523fa219a1186d583571597afcf5476477899dfb4a3cae6d467
SHA512

847af42e0b8ce17c043664ac2f0aebea6f916351ef853c66e5a4df44090cbd8af1ff8c6c26fc10c931054f25e17424764ff0a92cab98f6306a9cd81c0eb160a6
SSDEEP

6144:/8IF7/XRUro4HQk665wOdrtwRCyFrxyKH99Rp3rn4LC:P9J+wrofwrIKH99738W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-18_a34356892a35895e97db98428e0f4481_mafia

Files

2024-01-18_a34356892a35895e97db98428e0f4481_mafia
.exe windows:5 windows x86 arch:x86

ca2c31ba9eb3aaca8dbc0cfac675735e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowLongW
GetParent
CheckDlgButton
SendMessageW
GetScrollInfo
SystemParametersInfoW
AdjustWindowRect
SetRect
GetWindowInfo
DeleteMenu
GetSystemMenu
ShowWindow
FillRect
SetWindowTextW
IsDlgButtonChecked
GetMessageW
IsDialogMessageW
TranslateMessage
DispatchMessageW
wsprintfW
SetDlgItemTextW
UpdateWindow
InvalidateRect
LoadImageW
RegisterClassW
GetClassInfoW
GetMenu
LoadBitmapW
PostQuitMessage
GetMenuStringW
SetClassLongW
InvertRect
SetCapture
ReleaseCapture
CreateWindowExW
GetDC
LoadMenuW
TrackPopupMenu
DestroyMenu
MapVirtualKeyW
SetFocus
SetCursorPos
DefWindowProcW
GetMenuItemInfoW
CheckMenuRadioItem
CreateDialogParamW
PostMessageW
GetSubMenu
EnableMenuItem
CreatePopupMenu
GetMenuItemCount
GetFocus
ScrollWindow
SetScrollRange
BeginPaint
EndPaint
CheckMenuItem
DestroyWindow
LoadIconW
GetDlgCtrlID
MessageBoxW
AppendMenuW
InsertMenuItemW
LoadCursorW
SetCursor
GetCursorPos
ScreenToClient
GetDlgItemTextW
ClientToScreen
MoveWindow
GetActiveWindow
GetKeyState
SetWindowPos
GetWindowPlacement
SetWindowPlacement
GetWindowRect
GetClientRect
GetSysColorBrush
FindWindowW
EnumWindows
SetForegroundWindow
GetCapture
WINNLSEnableIME
ModifyMenuW
DrawMenuBar
GetMenuState
wvsprintfW
PeekMessageW
SetScrollPos
SetScrollInfo
GetWindowDC
GetSystemMetrics
DrawTextExW
ReleaseDC
GetScrollPos
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetWindowTextW
GetSysColor
LoadStringW
GetDlgItem
EnableWindow
SetWindowLongW
SendDlgItemMessageW

shell32

ShellExecuteW
FindExecutableW
DragAcceptFiles
DragFinish
DragQueryFileW

comctl32

ord17

comdlg32

GetOpenFileNameW
GetSaveFileNameW

gdi32

DeleteDC
GetStockObject
SelectObject
Polygon
Rectangle
CreateFontIndirectW
TextOutW
BitBlt
LineTo
MoveToEx
GetTextExtentPoint32W
Polyline
CreatePen
EnumFontFamiliesW
CreateSolidBrush
SetROP2
SetBkMode
SetTextColor
CreateCompatibleDC
IntersectClipRect
DeleteObject

msimg32

TransparentBlt

winmm

midiOutGetNumDevs
midiOutGetDevCapsW
sndPlaySoundW
timeBeginPeriod
timeSetEvent
midiOutOpen
timeKillEvent
timeEndPeriod
midiOutReset
midiOutPrepareHeader
midiOutLongMsg
midiOutUnprepareHeader
midiOutShortMsg
midiOutClose

msvfw32

MCIWndCreateW

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

kernel32

GetConsoleCP
MultiByteToWideChar
GetStringTypeW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InterlockedIncrement
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStdHandle
WriteFile
DecodePointer
ExitProcess
GetModuleHandleW
GetProcAddress
HeapCreate
EncodePointer
IsProcessorFeaturePresent
GetStartupInfoW
HeapSetInformation
GetCommandLineW
InterlockedDecrement
HeapAlloc
GetConsoleMode
GetLastError
GetSystemTimeAsFileTime
GetTempPathW
GetCurrentProcessId
GetSystemDirectoryW
InitializeCriticalSection
FindFirstFileW
FindNextFileW
FindClose
FindResourceW
LoadResource
LockResource
SetFileAttributesW
GetCompressedFileSizeW
CreateProcessW
WaitForSingleObject
CloseHandle
CopyFileW
DeleteFileW
GetFullPathNameW
GetFileAttributesW
GetLocalTime
GetCurrentDirectoryW
WideCharToMultiByte
Sleep
SetCurrentDirectoryW
GetShortPathNameW
GlobalAlloc
GlobalLock
GlobalUnlock
EnterCriticalSection
LeaveCriticalSection
MulDiv
LCMapStringW
GetModuleFileNameW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
RtlUnwind
SetFilePointer
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
LoadLibraryW
GetLocaleInfoW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
WriteConsoleW
SetStdHandle
FlushFileBuffers
CreateFileW
HeapReAlloc
ReadFile
HeapSize
SetEndOfFile
GetProcessHeap
HeapFree

Sections

.text
Size: 211KB - Virtual size: 210KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ca2c31ba9eb3aaca8dbc0cfac675735e

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

comctl32

comdlg32

gdi32

msimg32

winmm

msvfw32

advapi32

version

kernel32

Sections

.text Size: 211KB - Virtual size: 210KB

.rdata Size: 33KB - Virtual size: 32KB

.data Size: 11KB - Virtual size: 73KB

.rsrc Size: 52KB - Virtual size: 52KB

.reloc Size: 17KB - Virtual size: 16KB

.text
Size: 211KB - Virtual size: 210KB

.rdata
Size: 33KB - Virtual size: 32KB

.data
Size: 11KB - Virtual size: 73KB

.rsrc
Size: 52KB - Virtual size: 52KB

.reloc
Size: 17KB - Virtual size: 16KB