E:\Exontrol\Exontrol.Stress\Stress.ExG2antt\Release\Stress.pdb
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-25_b4e8ce7690ee9698a02c642a8b6861b7_mafia.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-25_b4e8ce7690ee9698a02c642a8b6861b7_mafia.exe
Resource
win10v2004-20240226-en
General
-
Target
2024-03-25_b4e8ce7690ee9698a02c642a8b6861b7_mafia
-
Size
3.3MB
-
MD5
b4e8ce7690ee9698a02c642a8b6861b7
-
SHA1
c2d5cce778e802495f566bc0787c0345b9108239
-
SHA256
b131ab19682db29cd1a4e74fcf88ca20b955b979255c944ecf90c8e2cf81f298
-
SHA512
75a5da4b1c8a2695dd2957012e02e081c570c4e98144400d69d2df75826c952ab776ad18d87807746dc2b936058d54f72650e02a7fa4a5f64c00534f8b2e7bb5
-
SSDEEP
98304:RN05bttuF6YRGe+1KepmdxWIP9yhSZO9LRZoj9ghi1RebMIg9Cbk/V8:EbyBiKomfUSZO9LzojDIg9Cbk/V8
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-03-25_b4e8ce7690ee9698a02c642a8b6861b7_mafia
Files
-
2024-03-25_b4e8ce7690ee9698a02c642a8b6861b7_mafia.exe windows:5 windows x86 arch:x86
0020c5bc59024a976df44734d1c10c46
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
GetTimeZoneInformation
LCMapStringW
SetEnvironmentVariableA
GetStringTypeW
IsValidLocale
EnumSystemLocalesA
WriteConsoleW
GetConsoleMode
IsProcessorFeaturePresent
GetConsoleCP
GetLocaleInfoA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
HeapCreate
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
SizeofResource
SetUnhandledExceptionFilter
GetFileType
SetStdHandle
HeapSize
HeapQueryInformation
CreateThread
ExitThread
ExitProcess
RaiseException
HeapReAlloc
GetSystemTimeAsFileTime
VirtualQuery
GetSystemInfo
VirtualAlloc
RtlUnwind
HeapFree
HeapAlloc
DecodePointer
EncodePointer
GetStartupInfoW
HeapSetInformation
GetCommandLineW
GetWindowsDirectoryW
FindResourceExW
SetErrorMode
GetFileSizeEx
LocalFileTimeToFileTime
GetFileAttributesExW
FileTimeToLocalFileTime
VirtualProtect
FileTimeToSystemTime
GlobalFlags
GetShortPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
WriteFile
ReadFile
MoveFileW
DeleteFileW
lstrcmpiW
GetThreadLocale
GetStringTypeExW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
TlsGetValue
LocalAlloc
GetTempPathW
SetFilePointer
SearchPathW
Sleep
GetProfileIntW
GetSystemDirectoryW
GetDiskFreeSpaceW
GetFullPathNameW
GetTempFileNameW
GetFileTime
SetFileTime
ReplaceFileW
SystemTimeToFileTime
GetUserDefaultLCID
WaitForSingleObject
ResumeThread
SetThreadPriority
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
LoadLibraryExW
CompareStringA
GlobalGetAtomNameW
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
CompareStringW
GetCurrentProcessId
FreeLibrary
ReleaseActCtx
CreateActCtxW
lstrcmpA
CopyFileW
GlobalUnlock
FormatMessageW
LocalFree
MulDiv
WideCharToMultiByte
GetCurrentDirectoryW
GetModuleFileNameW
CreateFileW
GetFileSize
CloseHandle
GetFileAttributesW
GlobalLock
ActivateActCtx
DeactivateActCtx
SetLastError
GetProcAddress
GetModuleHandleW
LoadLibraryW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetLastError
GlobalAlloc
GlobalReAlloc
GlobalFree
GlobalSize
EnterCriticalSection
LeaveCriticalSection
InterlockedExchange
lstrlenW
lstrcmpW
lstrcpyW
FreeResource
GetCurrentThreadId
GetTickCount
GetNumberFormatW
MultiByteToWideChar
lstrlenA
InterlockedDecrement
InterlockedIncrement
FindResourceW
LoadResource
LockResource
user32
RealChildWindowFromPoint
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyW
ToUnicodeEx
CopyIcon
FrameRect
SetCursorPos
SetClassLongW
GetMenuDefaultItem
SetLayeredWindowAttributes
EnumDisplayMonitors
CopyAcceleratorTableW
IsClipboardFormatAvailable
SetMenuDefaultItem
DrawIcon
ShowOwnedPopups
TranslateMessage
WaitMessage
PostThreadMessageW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
SetWindowContextHelpId
MapDialogRect
RegisterClipboardFormatW
PostQuitMessage
UnpackDDElParam
ReuseDDElParam
GetActiveWindow
LoadAcceleratorsW
InsertMenuItemW
GetDesktopWindow
TranslateAcceleratorW
LoadIconW
SendDlgItemMessageA
WinHelpW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
SetActiveWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
ScrollWindow
SetMenu
SetScrollRange
GetScrollRange
SetForegroundWindow
ShowScrollBar
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
DefWindowProcW
CallWindowProcW
GetMenu
SetRect
GetKeyNameTextW
GetSysColorBrush
DrawFocusRect
DrawEdge
GetSysColor
GetWindowThreadProcessId
GetLastActivePopup
MessageBoxW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
CharUpperBuffW
SetParent
LockWindowUpdate
BringWindowToTop
TrackPopupMenu
ModifyMenuW
CreatePopupMenu
GetWindowTextLengthW
GetWindowTextW
SetWindowPos
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowLongW
GetDlgCtrlID
SetWindowTextW
IsDialogMessageW
SendDlgItemMessageW
GetDlgItem
CheckDlgButton
GetMenuState
GetMenuStringW
AppendMenuW
InsertMenuW
RemoveMenu
PeekMessageW
GetMessageW
DispatchMessageW
MonitorFromPoint
GetMonitorInfoW
UpdateLayeredWindow
EnableScrollBar
SetScrollPos
GetScrollPos
ValidateRect
RedrawWindow
UpdateWindow
EnableWindow
ClientToScreen
IsWindow
MapWindowPoints
UnionRect
SystemParametersInfoW
LoadImageW
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
FillRect
DrawStateW
CopyImage
GetIconInfo
DestroyIcon
CopyRect
GetSystemMetrics
EnumChildWindows
GetUpdateRect
SubtractRect
GetNextDlgGroupItem
DestroyCursor
UnregisterClassW
GetDoubleClickTime
CharNextW
InvalidateRgn
HideCaret
DestroyMenu
IsMenu
GetClassLongW
GetWindowLongW
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
DrawFrameControl
IsRectEmpty
RegisterWindowMessageW
CharUpperW
InvertRect
MapVirtualKeyExW
IsCharLowerW
GetWindowRgn
CreateMenu
DrawIconEx
GetClientRect
InflateRect
SendMessageW
SetTimer
KillTimer
GetAsyncKeyState
GetWindow
PostMessageW
SetWindowRgn
GetWindowRect
IsWindowVisible
GetCapture
GetFocus
GetTopWindow
GetKeyState
NotifyWinEvent
DestroyWindow
GetParent
DestroyAcceleratorTable
PtInRect
SetRectEmpty
OffsetRect
IntersectRect
EqualRect
IsChild
EndDeferWindowPos
BeginDeferWindowPos
DeleteMenu
CheckMenuItem
EnableMenuItem
GetSubMenu
LoadMenuW
GetSystemMenu
ScreenToClient
InvalidateRect
SetCapture
WindowFromPoint
LoadCursorW
ReleaseCapture
MessageBeep
SetCursor
GetCursorPos
IsZoomed
IsIconic
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
SetFocus
DefFrameProcW
gdi32
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
GetObjectType
DPtoLP
LPtoDP
OffsetRgn
GetRgnBox
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetRectRgn
GetMapMode
ExtFloodFill
CreatePalette
GetPaletteEntries
OffsetViewportOrgEx
GetWindowOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
EnumFontFamiliesExW
GetNearestPaletteIndex
GetSystemPaletteEntries
GetTextFaceW
SetPixelV
Escape
SetViewportOrgEx
TextOutW
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
SelectClipRgn
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetPaletteEntries
GetStockObject
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
SetTextColor
CreateFontIndirectW
RoundRect
Rectangle
CreatePatternBrush
ExtTextOutW
Polygon
Ellipse
Polyline
GetTextColor
GetBkColor
CreatePolygonRgn
CreateEllipticRgn
CreateRectRgnIndirect
CreateHatchBrush
CreateSolidBrush
CreateDCW
CopyMetaFileW
GetDeviceCaps
CreateDIBSection
SetPixel
GetPixel
StretchBlt
CombineRgn
CreateRectRgn
CreateBitmap
SelectPalette
RealizePalette
GetDIBits
SetBkColor
BitBlt
SetDIBColorTable
DeleteDC
GetObjectW
DeleteObject
GetTextMetricsW
GetTextExtentPoint32W
PatBlt
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
CreateRoundRectRgn
CreatePen
msimg32
TransparentBlt
AlphaBlend
comdlg32
GetFileTitleW
winspool.drv
OpenPrinterW
DocumentPropertiesW
ClosePrinter
advapi32
RegEnumKeyExW
RegSetValueW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegEnumValueW
RegCloseKey
GetFileSecurityW
SetFileSecurityW
shell32
SHGetPathFromIDListW
DragFinish
DragQueryFileW
ShellExecuteW
SHGetFileInfoW
SHGetDesktopFolder
SHGetSpecialFolderLocation
ExtractIconW
SHAddToRecentDocs
SHBrowseForFolderW
SHGetMalloc
SHAppBarMessage
comctl32
InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Create
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Destroy
ImageList_DrawEx
shlwapi
PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
PathFindExtensionW
ole32
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
CoRevokeClassObject
CoGetClassObject
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
CoInitialize
CoCreateInstance
OleLockRunning
CLSIDFromString
CLSIDFromProgID
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CoCreateGuid
OleDuplicateData
StringFromCLSID
CoTaskMemAlloc
ReleaseStgMedium
CoInitializeEx
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
OleGetClipboard
CoUninitialize
CoTaskMemFree
CreateStreamOnHGlobal
oleaut32
VariantInit
VariantCopy
SysAllocStringLen
SysStringLen
VariantChangeType
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
OleCreateFontIndirect
SysFreeString
VariantClear
SysAllocString
GetErrorInfo
SafeArrayDestroy
oledlg
OleUIBusyW
gdiplus
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipCloneImage
GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageRectI
imm32
ImmReleaseContext
ImmGetContext
ImmGetOpenStatus
oleacc
LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject
winmm
PlaySoundW
Sections
.text Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 337KB - Virtual size: 337KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 27KB - Virtual size: 56KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 173KB - Virtual size: 173KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ