2024-04-20_294bef29d410b5231c439604f30dba9e_mafia | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-20_294bef29d410b5231c439604f30dba9e_mafia
Size

224KB
MD5

294bef29d410b5231c439604f30dba9e
SHA1

cba655606005f191f8a8abb3a506b15533720ca1
SHA256

7e36581be65f97861c1cdb12652cb3a108ca4df70016b5438f4057d2188b116a
SHA512

5eacb0c4becdef425f434f4a13faa0e453acd2cf571c05db5a2b733a1c0578a4bd67c5cfb3e1513e0d42a7d643cd644f78be8694bfadce89b66be695a0d653c2
SSDEEP

3072:iA/M9bsNkQgkHKNpokAXJhC36FbGi5ZQfWz6rsiRnQqrzQHr1HR5cBE6iSiU:iqMC5gBotXLy6Boez6I2nQqrMhHRh/XU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-20_294bef29d410b5231c439604f30dba9e_mafia

Files

2024-04-20_294bef29d410b5231c439604f30dba9e_mafia
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.sxdata
Size: 200KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 1024B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.l1
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.l1
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

X=P89D
Size: 512B - Virtual size: 128B

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE