2024-01-27_00ad063b5461af345c2e406588e84bcf_mafia_sakula

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-27_00ad063b5461af345c2e406588e84bcf_mafia_sakula
Size

3.6MB
MD5

00ad063b5461af345c2e406588e84bcf
SHA1

396bbcc796f56d86f83905363dd6144dcb596223
SHA256

8f792da6ee2326fb6356a9f914a7c0b69c506cf63beaa9fd45d86ad1c3fc2c25
SHA512

32908629c2c79eeacece984f93604dfc15582c96ad9f5698b49056870ce5c8fd8ff8fe793e445f6891d9d59dc9e04e5bdc5278421246276a2891caf81f7631e1
SSDEEP

49152:R0Ju/vXuwU2PvNglKf/q9nbkQF3VLCSJev7c/pG2R:qM/vXtv2lK3q9nb8SJev

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-27_00ad063b5461af345c2e406588e84bcf_mafia_sakula

Files

2024-01-27_00ad063b5461af345c2e406588e84bcf_mafia_sakula
.exe windows:5 windows x86 arch:x86

32effd517872d0b3056c6f6bd2c1ec3c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime
timeBeginPeriod
timeEndPeriod

gdiplus

GdipFree
GdipDeleteGraphics
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImageHorizontalResolution
GdipGetImageVerticalResolution
GdipGetImagePixelFormat
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipBitmapSetResolution
GdiplusStartup
GdiplusShutdown
GdipGetImageGraphicsContext
GdipSetCompositingMode
GdipSetCompositingQuality
GdipSetInterpolationMode
GdipSetSmoothingMode
GdipSetPixelOffsetMode
GdipDrawImageRectI
GdipCloneImage
GdipAlloc

kernel32

CreateFileW
SetEnvironmentVariableA
GetProcessHeap
SetEndOfFile
SetStdHandle
WriteConsoleW
WaitForSingleObject
GetExitCodeProcess
CreatePipe
GetStringTypeW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
QueryPerformanceFrequency
QueryPerformanceCounter
Sleep
GetCurrentProcess
GetModuleFileNameA
CreateProcessA
GetModuleHandleA
GetFileAttributesA
CloseHandle
CreateFileA
GetLastError
DeleteFileA
FindClose
FindNextFileA
FindFirstFileA
SetLastError
ExitProcess
LocalFree
FormatMessageA
FreeLibrary
LoadLibraryA
GetProcAddress
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
EncodePointer
DecodePointer
RaiseException
RtlUnwind
GetCommandLineA
HeapSetInformation
GetStartupInfoW
HeapFree
HeapAlloc
HeapReAlloc
GetModuleHandleW
GetSystemTimeAsFileTime
MoveFileA
GetTimeFormatA
GetDateFormatA
DuplicateHandle
LCMapStringW
GetCPInfo
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetCurrentThreadId
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
WriteFile
GetStdHandle
GetModuleFileNameW
GetLocaleInfoW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
HeapCreate
GetTickCount
GetCurrentProcessId
HeapSize
GetConsoleCP
GetConsoleMode
FlushFileBuffers
ReadFile
GetUserDefaultLCID
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryW
CompareStringW
GetTimeZoneInformation
SetFilePointer

user32

GetCursorPos
GetAsyncKeyState
SetCursorPos
GetCursorInfo
ScreenToClient
PtInRect
ShowCursor
GetKeyboardState
GetKeyState
EnumDisplaySettingsA
ChangeDisplaySettingsA
InvalidateRect
MessageBoxA
LoadImageA
SendMessageA
SetWindowTextA
LoadCursorA
RegisterClassExA
GetDC
ValidateRect
DefWindowProcA
OffsetRect
GetAncestor
ClientToScreen
GetWindowRect
MoveWindow
IsWindow
ReleaseDC
DestroyWindow
GetSystemMetrics
AdjustWindowRectEx
ShowWindow
UpdateWindow
GetWindowLongA
GetClientRect
SetWindowLongA
SetWindowPos
EqualRect
AdjustWindowRect
CreateWindowExA
PeekMessageA
DispatchMessageA
PostQuitMessage

gdi32

ChoosePixelFormat
DescribePixelFormat
SwapBuffers
SetPixelFormat

opengl32

glDisable
glEnable
glColor4f
glDisableClientState
glVertexPointer
glEnableClientState
glColorPointer
glTexCoordPointer
glDrawArrays
glDrawElements
glRectf
glLineStipple
glDepthRange
glViewport
glLightfv
glLightf
glNormalPointer
glTexImage2D
glGetFloatv
glLoadMatrixf
glMatrixMode
glClear
glClearColor
glClearDepth
glClearStencil
glFinish
glScissor
wglGetProcAddress
wglCreateContext
wglDeleteContext
glPushMatrix
glLoadIdentity
glPopMatrix
glLightModeli
glHint
glGetString
glReadBuffer
glReadPixels
glPixelZoom
glRasterPos2i
glDrawPixels
glMaterialfv
glLightModelf
glLightModelfv
glTexParameteri
glTexEnvi
glTexGenfv
glTexGeni
glLineWidth
glPointSize
glPolygonOffset
glStencilMask
glStencilFunc
glStencilOp
glDepthMask
glDepthFunc
glShadeModel
glPolygonMode
glFogi
glFogfv
glColorMask
glBlendFunc
glAlphaFunc
glCullFace
glFogf
wglMakeCurrent
wglGetCurrentDC
glDeleteTextures
glBindTexture
glGenTextures
glPixelStorei
glGetIntegerv

glu32

gluScaleImage
gluBuild2DMipmaps
gluProject
gluUnProject
gluGetString
gluOrtho2D

ws2_32

listen
accept
connect
recv
recvfrom
send
sendto
gethostbyname
gethostname
socket
htons
WSAStartup
ioctlsocket
setsockopt
WSAGetLastError
getsockopt
__WSAFDIsSet
select
WSACleanup
bind
getsockname
inet_addr
inet_ntoa
closesocket

pthreadvc2_2010

pthread_rwlock_rdlock
sched_get_priority_min
pthread_mutex_lock
sched_get_priority_max
pthread_cond_init
pthread_rwlock_init
pthread_mutexattr_init
pthread_mutexattr_settype
pthread_mutex_init
pthread_mutexattr_destroy
pthread_attr_init
pthread_attr_setdetachstate
pthread_attr_setschedparam
pthread_rwlock_wrlock
pthread_create
pthread_attr_destroy
pthread_cond_destroy
pthread_rwlock_destroy
pthread_mutex_trylock
pthread_mutex_destroy
pthread_self
pthread_setschedparam
pthread_cond_wait
pthread_cond_signal
pthread_cond_broadcast
pthread_rwlock_unlock
pthread_rwlock_trywrlock
pthread_mutex_unlock
pthread_attr_setinheritsched

openal32

alSourcePause
alGetEnumValue
alGetError
alSourcePlay
alGetSourcei
alSource3f
alSourcef
alSourcei
alcCloseDevice
alcDestroyContext
alcMakeContextCurrent
alListener3f
alListenerf
alDistanceModel
alDeleteBuffers
alDeleteSources
alGenSources
alSourceRewind
alSourceQueueBuffers
alBufferData
alSourceUnqueueBuffers
alSourceStop
alGenBuffers
alcGetString
alGetString
alGetFloatv
alcCreateContext
alcOpenDevice

Sections

.text
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 291KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32effd517872d0b3056c6f6bd2c1ec3c

Headers

DLL Characteristics

File Characteristics

Imports

winmm

gdiplus

kernel32

user32

gdi32

opengl32

glu32

ws2_32

pthreadvc2_2010

openal32

Sections

.text Size: 2.0MB - Virtual size: 2.0MB

.rdata Size: 291KB - Virtual size: 290KB

.data Size: 1.1MB - Virtual size: 1.1MB

.rsrc Size: 71KB - Virtual size: 71KB

.reloc Size: 197KB - Virtual size: 197KB

.text
Size: 2.0MB - Virtual size: 2.0MB

.rdata
Size: 291KB - Virtual size: 290KB

.data
Size: 1.1MB - Virtual size: 1.1MB

.rsrc
Size: 71KB - Virtual size: 71KB

.reloc
Size: 197KB - Virtual size: 197KB