2024-04-06_f5a08cab5acbe83998dc5e43d0079823_karagany_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-06_f5a08cab5acbe83998dc5e43d0079823_karagany_mafia
Size

150KB
MD5

f5a08cab5acbe83998dc5e43d0079823
SHA1

aa343f7bfc3a80163405b770f8adc743f9d31680
SHA256

b47fcc61ab03da929d243e75d49066d8dbc1ab5c2411c1665cf255d080de47d2
SHA512

5e11e5c2dcf681cbdd8ad240a17a4083cf73509a14077d23fcbf7c736d7e99bca8f72044234c15db9f1878665b20fe44f46ed09fae6e2e9206583724c4a655fe
SSDEEP

3072:+PbMG3QgEfdfh/Tz0IwjCrMuEiJH/27s7uoH61B:4bMG3QgElfh/0Ifo7yHYsSoa1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-06_f5a08cab5acbe83998dc5e43d0079823_karagany_mafia

Files

2024-04-06_f5a08cab5acbe83998dc5e43d0079823_karagany_mafia
.exe windows:5 windows x86 arch:x86

8fc312f42cfe0a5301409c1c55ff204d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
VirtualAlloc
EnterCriticalSection
GetSystemInfo
InitializeCriticalSectionAndSpinCount
InitializeCriticalSection
CreateFileW
WriteConsoleW
GetProcessHeap
SetEndOfFile
LoadLibraryW
VirtualFree
HeapReAlloc
LCMapStringW
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetStdHandle
CreateFileA
SetFilePointer
ReadFile
HeapSize
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
SleepEx
VirtualQuery
GetCurrentDirectoryA
GetLastError
CreateMutexA
WritePrivateProfileSectionA
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
HeapCreate
GetModuleFileNameW
WriteFile
ExitProcess
GetStringTypeW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetLocaleInfoW
GetUserDefaultLCID
Sleep
GetProcAddress
GetCurrentThreadId
SetLastError
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
WritePrivateProfileStringA
DeleteCriticalSection
MultiByteToWideChar
InterlockedDecrement
InterlockedIncrement
HeapAlloc
HeapFree
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
RtlUnwind
EncodePointer
DecodePointer
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
CloseHandle
SetHandleCount
GetStdHandle
GetFileType

user32

wsprintfA
FindWindowA
SetForegroundWindow
DialogBoxParamA
DestroyWindow
SendDlgItemMessageA
GetDlgItemTextA
EnableWindow
GetDlgItem
GetWindowRect
ScreenToClient
SetDlgItemTextA
MoveWindow
InvalidateRect
UpdateWindow
MessageBoxA
GetWindowLongA
LoadIconA
BeginPaint
EndPaint
EndDialog
SendMessageA

abcdx_card

?CreateCardManager@@YAPAVICardManager@IABCD@@XZ

gw32lib

?GetGW32Manager@@YAPAVIGW32Manager@GW32@@XZ

gdiplus

GdipSetImageAttributesColorKeys
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipDisposeImage
GdipSaveImageToFile
GdipLoadImageFromFile
GdipFree
GdipAlloc
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipFillRectangleI
GdipDrawImageRectRectI
GdipGetDC
GdipReleaseDC
GdipResetImageAttributes
GdipCreateFont
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDeleteFont
GdipDrawString
GdipDeleteGraphics
GdipGetImageEncodersSize
GdipGetImageEncoders
GdiplusStartup
GdipCloneImage
GdiplusShutdown

comdlg32

GetOpenFileNameA
GetSaveFileNameA

Sections

.text
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8fc312f42cfe0a5301409c1c55ff204d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

abcdx_card

gw32lib

gdiplus

comdlg32

Sections

.text Size: 106KB - Virtual size: 105KB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 6KB - Virtual size: 170KB

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 106KB - Virtual size: 105KB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 6KB - Virtual size: 170KB

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 9KB - Virtual size: 9KB