2024-02-28_162e66bd8f06e44a9b46f1d6462954e5_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-28_162e66bd8f06e44a9b46f1d6462954e5_mafia
Size

2.3MB
MD5

162e66bd8f06e44a9b46f1d6462954e5
SHA1

cc3a98bb1b43769d03b812509ff96ffb5c2aa944
SHA256

27e45ba5c68d9ca0ff52f6c30012411966493363576be26d725af02945c7e5e8
SHA512

8cf334cbcddbfad16d5fb0afcb0ec6020d1eb9c8ce38b18a1ca48de110f4b66cf48c374648199a2f1e5cf58e024181bc2c53275d18df090772e7f1b745e2e56d
SSDEEP

49152:xTjyhYbqZ65A4wA0pHFZlGZFxKg3zFCZ1yEc/rkvtT+vlIZBC8:xwYbqZ6PwA0pHFynxjzFCZ1yyvtklIZB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-28_162e66bd8f06e44a9b46f1d6462954e5_mafia

Files

2024-02-28_162e66bd8f06e44a9b46f1d6462954e5_mafia
.exe windows:5 windows x86 arch:x86

7d4d128711b1593cf7c1747b832b1c3b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\manfre\Special Eyes\calculator\specalc 2.2\Release\specalc.pdb

Imports

kernel32

EnumSystemLocalesA
GetLocaleInfoA
IsValidLocale
GetFileInformationByHandle
FindFirstFileExW
GetDriveTypeW
InterlockedCompareExchange
WriteConsoleW
PeekNamedPipe
SetEnvironmentVariableA
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
LCMapStringW
IsProcessorFeaturePresent
GetStringTypeW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
HeapCreate
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
SetUnhandledExceptionFilter
GetFileType
SetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
GetSystemTimeAsFileTime
HeapSize
HeapQueryInformation
ExitProcess
CreateThread
ExitThread
HeapReAlloc
RaiseException
RtlUnwind
HeapFree
HeapAlloc
EncodePointer
DecodePointer
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
GetUserDefaultLCID
VirtualProtect
GetFileTime
GetFileSizeEx
FileTimeToLocalFileTime
GetFileAttributesExW
SetErrorMode
SearchPathW
Sleep
GetProfileIntW
GetTickCount
GetFileAttributesW
GetTempPathW
GetTempFileNameW
GetNumberFormatW
GetWindowsDirectoryW
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DeleteFileW
CreateFileW
lstrcmpiW
GetCurrentDirectoryW
FileTimeToSystemTime
GetSystemDirectoryW
GlobalGetAtomNameW
lstrlenA
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GlobalFlags
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
lstrcpyW
lstrcmpA
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
LoadLibraryExW
InterlockedExchange
WaitForSingleObject
ResumeThread
SetThreadPriority
CloseHandle
InterlockedDecrement
ReleaseActCtx
CreateActCtxW
GetCurrentProcessId
GetModuleFileNameW
CopyFileW
GlobalSize
GlobalAlloc
MultiByteToWideChar
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
GetModuleHandleW
CompareStringW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
ActivateActCtx
DeactivateActCtx
lstrcmpW
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
MulDiv
WideCharToMultiByte
lstrlenW
GetProcAddress
LoadLibraryW
FreeLibrary
LocalFree
FormatMessageW
SetLastError
GetLastError
FindResourceW
LoadResource
LockResource
GetProcessHeap
SizeofResource

user32

SetWindowRgn
DeleteMenu
IntersectRect
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
LoadCursorW
GetSysColorBrush
CopyImage
RealChildWindowFromPoint
SystemParametersInfoW
DestroyMenu
GetMenuItemInfoW
InflateRect
LoadMenuW
ShowOwnedPopups
SetCursor
PostQuitMessage
MapVirtualKeyW
GetKeyNameTextW
GetMessageW
TranslateMessage
GetCursorPos
GetWindowDC
ReleaseDC
GetDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetWindowThreadProcessId
GetMenuStringW
InsertMenuW
RemoveMenu
MoveWindow
IsDialogMessageW
SetDlgItemTextW
SetDlgItemInt
GetDlgItemTextW
GetDlgItemInt
CheckDlgButton
FillRect
DrawStateW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
WindowFromPoint
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
RedrawWindow
IsWindowVisible
ValidateRect
GetSubMenu
GetMenuItemID
GetMenuItemCount
MessageBoxW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
DefWindowProcW
CallWindowProcW
GetMenu
SetWindowLongW
SetWindowPos
CopyRect
PtInRect
GetDesktopWindow
GetActiveWindow
GetWindowRgn
CreateDialogIndirectParamW
IsWindow
EnableWindow
SendMessageW
CreateWindowExW
LoadStringW
GetClientRect
IsWindowEnabled
EndDialog
DrawIcon
GetSystemMetrics
IsIconic
AppendMenuW
GetSystemMenu
LoadIconW
EndPaint
MapDialogRect
BeginPaint
GetUpdateRect
OffsetRect
GetWindowRect
SetRect
MessageBeep
NotifyWinEvent
IsZoomed
CharUpperW
IsRectEmpty
UnionRect
EnableScrollBar
UpdateLayeredWindow
MonitorFromPoint
IsMenu
CreatePopupMenu
SetMenuDefaultItem
GetMenuDefaultItem
UnregisterClassW
UpdateWindow
PeekMessageW
SetActiveWindow
ReleaseCapture
SetFocus
SetCapture
IsDlgButtonChecked
InvalidateRect
KillTimer
SetTimer
ClientToScreen
DestroyIcon
InvertRect
DrawFocusRect
HideCaret
GetIconInfo
GetMessagePos
LoadImageW
ShowWindow
DestroyWindow
GetAsyncKeyState
GetWindow
GetParent
GetNextDlgTabItem
PostMessageW
GetWindowLongW
GetDlgCtrlID
GetDlgItem
SetWindowTextW
DestroyCursor
SubtractRect
GetDoubleClickTime
IsClipboardFormatAvailable
CreateMenu
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
MapVirtualKeyExW
IsCharLowerW
GetNextDlgGroupItem
PostThreadMessageW
CharUpperBuffW
CopyIcon
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
FrameRect
RegisterClipboardFormatW
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
LockWindowUpdate
BringWindowToTop
SetCursorPos
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
CopyAcceleratorTableW
DrawFrameControl
DrawEdge
SetClassLongW
DestroyAcceleratorTable
SetParent
ScrollWindow
DrawIconEx
WaitMessage

gdi32

SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
GetLayout
SetLayout
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
BitBlt
GetPixel
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
CreateCompatibleDC
SelectPalette
GetObjectType
CreatePen
CreateHatchBrush
PatBlt
GetTextExtentPoint32W
GetTextMetricsW
CreateDIBitmap
CreateCompatibleBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetRectRgn
CombineRgn
CreateRoundRectRgn
CreateDIBSection
CreateFontW
StretchDIBits
GetBkColor
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
CreatePolygonRgn
GetTextColor
CreateEllipticRgn
Polyline
Ellipse
Polygon
OffsetRgn
GetRgnBox
SetDIBColorTable
StretchBlt
SetPixel
Rectangle
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
SetPixelV
GetTextFaceW
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
CreateDCW
CopyMetaFileW
GetStockObject
CreateSolidBrush
CreateBitmap
SetTextColor
RoundRect
LPtoDP
DeleteObject
CreateFontIndirectW
AbortDoc
EndDoc
EndPage
StartPage
DPtoLP
GetDeviceCaps
StartDocW
SetAbortProc
CreateRectRgnIndirect
GetObjectW
SetBkColor
GetTextExtentExPointW
GetDIBColorTable
SetDIBitsToDevice

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
GetJobW
OpenPrinterW
ClosePrinter

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegCloseKey
RegEnumKeyExW
RegEnumValueW

shell32

SHAppBarMessage
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
ShellExecuteExW
DragQueryFileW
DragFinish
ShellExecuteW
SHGetFileInfoW

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathRemoveFileSpecW
PathFindExtensionW
PathStripToRootW
PathFindFileNameW
PathIsUNCW

ole32

RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
DoDragDrop
CreateStreamOnHGlobal
CoInitialize
CoCreateGuid
CoInitializeEx
CoCreateInstance
CoUninitialize
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree

oleaut32

SysStringLen
SysAllocString
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
VariantInit
SysFreeString
VariantChangeType
SysAllocStringLen
VariantClear

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 306KB - Virtual size: 305KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 508KB - Virtual size: 508KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 178KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d4d128711b1593cf7c1747b832b1c3b

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 306KB - Virtual size: 305KB

.data Size: 25KB - Virtual size: 64KB

.rsrc Size: 508KB - Virtual size: 508KB

.reloc Size: 178KB - Virtual size: 177KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 306KB - Virtual size: 305KB

.data
Size: 25KB - Virtual size: 64KB

.rsrc
Size: 508KB - Virtual size: 508KB

.reloc
Size: 178KB - Virtual size: 177KB