2024-01-27_c954dd86cd73eb30fb8bdab2c559cc79_mafia | Triage

Sharing

General

Target

2024-01-27_c954dd86cd73eb30fb8bdab2c559cc79_mafia
Size

847KB
MD5

c954dd86cd73eb30fb8bdab2c559cc79
SHA1

20507382c72ca9033d67459fb2ad087de458bcd8
SHA256

c4dc041dd234793bba6165d221a37eb8021dbf07ab186bdc12a928d761ec2fe0
SHA512

287157913a74a84d7dbd42b0b5b17bd35ce6a5f272373e7e3f7b98e4c6bd3d64afaa98b7722ace163e5790f3d0619f54f8348d283416f6b59c2d80e412778951
SSDEEP

12288:73GqHF0zAMOe9+KnoCiLR2f4CbdkzkBLDE9W+WRNn5HVcIkDMS3Cuq:ti5OAo1R2zzdHfNnRVczMqCJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-27_c954dd86cd73eb30fb8bdab2c559cc79_mafia

Files

2024-01-27_c954dd86cd73eb30fb8bdab2c559cc79_mafia
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 515KB - Virtual size: 515KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ