2024-03-20_34aac3db235853eb580f47a2ddd4b016_mafia | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-20_34aac3db235853eb580f47a2ddd4b016_mafia
Size

436KB
MD5

34aac3db235853eb580f47a2ddd4b016
SHA1

8a2f0424235b4c35e4724461d0e44b898768ea0f
SHA256

2e27d38709ef7fc1aa68cf47ad000a07faf087f2a67b40bdc5bc23f72022d3c1
SHA512

9d0d805ab564b3d28dacc3118514a12f77682571826828d3aded08e768b78078e8645941d426531fc980e961d38b9eb3b52432ce243dd78fa2814cd5aa249cfb
SSDEEP

6144:a9EyS4oaxTkjxcW1Htg88HP7Iuurai5Hxx0qfBVokAkvZrgMFHZ4rqJMJEkRlrsK:aO4GfBtL8HPJR+Rx04bbvRYry4HibYT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-20_34aac3db235853eb580f47a2ddd4b016_mafia

Files

2024-03-20_34aac3db235853eb580f47a2ddd4b016_mafia
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 257KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.htext
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE