2024-05-07_6a20e2a53c9c3c21ba20d9c75a39cfb7_mafia | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-07_6a20e2a53c9c3c21ba20d9c75a39cfb7_mafia
Size

2.4MB
MD5

6a20e2a53c9c3c21ba20d9c75a39cfb7
SHA1

912a740d8762ed1f54b973519d75f5b6e08555c3
SHA256

b439192ab58836bff443088eaafd87926c10e5a800fb737102638fb434d9baa8
SHA512

062e92059daefda458376c5d0e8b2abf51b20ce67c5882a5053243d9eb4f9e9b25c533f72ada8a7be5396f5a90beb0f8d312d447cdab889e91a9c4f76469fc2e
SSDEEP

49152:FhKPgssSt2gMNKxC9Y5lpuGIPQxMXj8iuF2QJ4O8b8ITDnlv7:Fhv7StmgxC9Y5lpuG81

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-07_6a20e2a53c9c3c21ba20d9c75a39cfb7_mafia

Files

2024-05-07_6a20e2a53c9c3c21ba20d9c75a39cfb7_mafia
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

p:\Target\x86\ship\setuptools\x-none\Flattener.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ