2024-01-22_45bcfc892729ff137f5a3a521e4a80f4_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-22_45bcfc892729ff137f5a3a521e4a80f4_mafia
Size

431KB
MD5

45bcfc892729ff137f5a3a521e4a80f4
SHA1

233d0cc2652df66cd6ca42730562b7e954fac2de
SHA256

aa04537d71138b244ce6fc5e4b81634a700682707d1d0424b1ddae64ec230d86
SHA512

b2d5b32c26e42a189f0f53a394d046c837d9e18621cd5b005f1a6fca8c8125b308934bb997a99ef1984a0931bcfd22c3742e783d4cc224f5734a08c115ce97b2
SSDEEP

12288:5TRu9yFicLFurr61vsEAnXltJW26vlqgwwYNwSG4Nz8q:nZGivsznVt829gwwYNwSG4Nzt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-22_45bcfc892729ff137f5a3a521e4a80f4_mafia

Files

2024-01-22_45bcfc892729ff137f5a3a521e4a80f4_mafia
.exe windows:5 windows x86 arch:x86

bbcef0430fd0d57a4cc704fa97331727

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFindFileNameW
PathFindExtensionW
PathFileExistsW

kernel32

LoadResource
FindResourceW
GetTempFileNameW
GetTempPathW
SizeofResource
WriteFile
CreateFileW
GetCommandLineW
LockResource
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetModuleHandleW
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
InterlockedCompareExchange
GetStringTypeW
CloseHandle
InterlockedExchange
ReadFile
GetProcessHeap
SetEndOfFile
CreateFileA
WriteConsoleW
FlushFileBuffers
SetStdHandle
SetFilePointer
LoadLibraryW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
HeapReAlloc
GetCurrentDirectoryW
IsValidCodePage
GetOEMCP
GetACP
GetConsoleMode
GetConsoleCP
HeapSize
IsProcessorFeaturePresent
GetLocaleInfoW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameW
GetStdHandle
ExitProcess
HeapAlloc
RtlUnwind
GetCPInfo
LCMapStringW
GetFullPathNameA
GetDriveTypeW
RaiseException
LoadLibraryA
GetLastError
FreeLibrary
GetProcAddress
LocalAlloc
Sleep
EncodePointer
DecodePointer
HeapSetInformation
GetStartupInfoW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
HeapFree
MultiByteToWideChar

gdi32

SetBkMode
SetTextColor
GetClipBox
CreateSolidBrush
DeleteObject
GetStockObject
SwapBuffers
ChoosePixelFormat
SetPixelFormat
CreateDIBSection

comdlg32

FindTextW

user32

DialogBoxParamW
ReleaseDC
DestroyWindow
DefWindowProcW
SetTimer
KillTimer
GetWindowLongW
ShowWindow
UpdateWindow
SetWindowPos
GetClientRect
GetParent
SetWindowTextW
EnableWindow
GetSystemMetrics
LoadStringW
LoadAcceleratorsW
RegisterWindowMessageW
GetMessageW
IsDialogMessageW
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
RegisterClassExW
SendMessageW
CallWindowProcW
PostMessageW
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
PostQuitMessage
GetDC
EndDialog
MessageBoxW
DrawTextW
FillRect
IsWindow
BeginPaint
EndPaint
TrackMouseEvent
SetCapture
SetFocus
GetCapture
ReleaseCapture
SetClassLongW
SetCursor
MapWindowPoints
LoadIconW
LoadCursorW
RegisterClassW
CreateWindowExW
SetWindowLongW

opengl32

glGenTextures
glPixelStorei
glHint
glDeleteTextures
glDrawArrays
glInterleavedArrays
glBlendFunc
glPopAttrib
glColor4f
glPushAttrib
glOrtho
glLoadIdentity
glMatrixMode
glTexImage2D
glTexSubImage2D
glTexParameteri
glTexEnvf
glViewport
glClearColor
glClear
glPushMatrix
glEnable
glPolygonStipple
glRotatef
glBegin
glColor3f
glVertex2f
glEnd
glDisable
glPopMatrix
wglCreateContext
wglMakeCurrent
wglDeleteContext
glBindTexture

libcef

cef_string_utf16_clear
cef_string_utf8_to_utf16
cef_string_utf8_clear
cef_string_utf16_to_utf8
cef_string_ascii_to_utf16
cef_string_utf16_set
cef_string_utf16_cmp
cef_time_now
cef_time_delta
cef_string_list_free
cef_shutdown
cef_run_message_loop
cef_set_osmodal_loop
cef_currently_on
cef_get_web_plugin_count
cef_parse_url
cef_initialize
cef_build_revision
cef_register_scheme_handler_factory
cef_post_task
cef_register_extension
cef_get_web_plugin_info
cef_get_web_plugin_info_byname
cef_browser_create
cef_string_list_alloc
cef_register_plugin
cef_stream_reader_create_for_data
cef_stream_reader_create_for_handler
cef_string_userfree_utf16_free
cef_v8value_create_null
cef_v8value_create_bool
cef_v8value_create_int
cef_v8value_create_uint
cef_v8value_create_double
cef_v8value_create_date
cef_v8value_create_string
cef_v8value_create_object
cef_v8value_create_array
cef_v8value_create_function
cef_v8context_get_current_context
cef_web_urlrequest_create
cef_string_multimap_free
cef_string_multimap_alloc
cef_request_create
cef_command_line_create
cef_string_map_free
cef_string_map_alloc
cef_post_data_create
cef_post_data_element_create
cef_string_list_append
cef_string_map_append
cef_string_multimap_append
cef_string_list_value
cef_string_list_size
cef_string_map_value
cef_string_map_key
cef_string_map_size
cef_string_multimap_value
cef_string_multimap_key
cef_string_multimap_size
cef_string_list_copy

Sections

.text
Size: 270KB - Virtual size: 269KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bbcef0430fd0d57a4cc704fa97331727

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

gdi32

comdlg32

user32

opengl32

libcef

Sections

.text Size: 270KB - Virtual size: 269KB

.rdata Size: 34KB - Virtual size: 34KB

.data Size: 6KB - Virtual size: 15KB

.rsrc Size: 99KB - Virtual size: 98KB

.reloc Size: 21KB - Virtual size: 20KB

.text
Size: 270KB - Virtual size: 269KB

.rdata
Size: 34KB - Virtual size: 34KB

.data
Size: 6KB - Virtual size: 15KB

.rsrc
Size: 99KB - Virtual size: 98KB

.reloc
Size: 21KB - Virtual size: 20KB