2024-04-18_9b18e545ee8f2b243b5813e0bea24949_mafia | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-18_9b18e545ee8f2b243b5813e0bea24949_mafia
Size

6.7MB
MD5

9b18e545ee8f2b243b5813e0bea24949
SHA1

4c7c6c51a6522c2acfd6b3087de478ff64a163e1
SHA256

1a214cfe1fb60d43e96c770b65a17ef1d5cdc6e7c1323b48f006401b5f0f18bc
SHA512

8b6c8c810d8a024de14b786ee1e2b62a17bbf1270f67143d2b6b00dd9e39a3df33fd6750ddf7991ea0d36887adf70990d057a7a8403558d6d3113814ec53234a
SSDEEP

98304:SsgxC9Y5lpuG8ntLK3BDhtvS0Hpe4zbpaAKQkroGIC:FQIG8+BnvjeApaAvkt3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-18_9b18e545ee8f2b243b5813e0bea24949_mafia

Files

2024-04-18_9b18e545ee8f2b243b5813e0bea24949_mafia
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

p:\Target\x86\ship\setuptools\x-none\Flattener.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ