2024-04-15_0c8f41225bfc0a79e763b44681db7104_mafia | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-15_0c8f41225bfc0a79e763b44681db7104_mafia
Size

712KB
MD5

0c8f41225bfc0a79e763b44681db7104
SHA1

69b5900d514f67b6dde440d271fd32ffe01904d7
SHA256

a2a5253345740bd50ba1f09a5e3bd4067a3e7d33612087f15f274c83cd029def
SHA512

aacfe300d81be806027737c3528cd564b0e0ca89b1170c3d1cd5c0c2c66542204ad1e1844ce122ba7b0df1d38a851c24d556ba6825c325523e18ea6a0e1c9d27
SSDEEP

12288:FU5rCOTeiDRuiHmdGtzBjldNhVlLxXNZdCvq5TJLCvY90D8/LVBlVk736Y79GWzC:FUQOJD0u2GtzXdzdNnCvq5TJLCvY90DA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-15_0c8f41225bfc0a79e763b44681db7104_mafia

Files

2024-04-15_0c8f41225bfc0a79e763b44681db7104_mafia
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 262KB - Virtual size: 283KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ