2024-05-14_1c9ea63377ca66f70158dbbae3293f79_mafia | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-14_1c9ea63377ca66f70158dbbae3293f79_mafia
Size

1010KB
MD5

1c9ea63377ca66f70158dbbae3293f79
SHA1

f78c6e06c6d7650ce91c7692f1a44d4efb7fdd68
SHA256

d5e30bad1e243c0afa150e53ff01a1e38c67c529f411719bcdc71eb6a458dfb8
SHA512

f27a52a1601544f62b39658b91f128334f276fd13ddcc0fe539553916fae2287cf93b23b029d6737d9e4fcf69bcbf911a93b046f74add80b659e129610194676
SSDEEP

24576:A2KrXu0GwtieuakQQAqmJC7DenmS+M5vXQpDPEf28hk:A2x0cQKpQ6rS28i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-14_1c9ea63377ca66f70158dbbae3293f79_mafia

Files

2024-05-14_1c9ea63377ca66f70158dbbae3293f79_mafia
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 533KB - Virtual size: 533KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 277KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 83KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ