Static task
static1
Behavioral task
behavioral1
Sample
2024-05-27_60cd159f13b8cb426765f9c5b1779f31_mafia.exe
Resource
win7-20240419-en
windows7-x64
Behavioral task
behavioral2
Sample
2024-05-27_60cd159f13b8cb426765f9c5b1779f31_mafia.exe
Resource
win10v2004-20240426-en
windows10-2004-x64
Target
2024-05-27_60cd159f13b8cb426765f9c5b1779f31_mafia
Size
2.7MB
MD5
60cd159f13b8cb426765f9c5b1779f31
SHA1
5fdf96f2e6af333df4dfbfe85ab88a02e66942bf
SHA256
a47c7767e66bee2d5b4c164dfe9e91e87d5a02481d337f04390c9a55e0c58ff6
SHA512
2df429a8ff73ae15e570185687561038c85e5343dbd949fafb935fadcee37bc2634dfefc1554ee40756c79695d2b30e021a5937507077658b3c5369655fa8dad
SSDEEP
49152:ogWmv9Sm+nHNAAPYchiPqX5G1YgguT3kBtz+qa:QO+nHHYcQqX5IXgwkBta
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
D:\Output\Tools\PMonitor\PMonitor.pdb
SetErrorMode
InterlockedDecrement
CreateEventW
LocalFree
GetUserDefaultLangID
OpenEventW
GetPrivateProfileStringW
ResetEvent
DeleteFileW
GetFileAttributesW
CreateProcessW
LoadLibraryW
GetPrivateProfileIntW
GetTempPathW
GetTempFileNameW
GetProcAddress
FreeLibrary
GetModuleFileNameW
FindResourceW
SizeofResource
LoadResource
LockResource
FreeResource
OpenProcess
WaitForMultipleObjects
DebugBreakProcess
GetFileSize
ReadFile
WriteFile
lstrlenW
DeleteFileA
WaitForSingleObject
OutputDebugStringW
Sleep
CreateThread
CopyFileW
SetEvent
TerminateThread
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetModuleHandleW
CreateFileW
GetCurrentThreadId
GetCurrentProcessId
CloseHandle
GetCurrentProcess
MultiByteToWideChar
GetLocalTime
WideCharToMultiByte
IsBadReadPtr
OutputDebugStringA
SetEnvironmentVariableA
CompareStringW
SetEndOfFile
SetStdHandle
WriteConsoleW
GetExitCodeProcess
CreatePipe
CreateFileA
GetFileAttributesA
GetProcessHeap
GetStringTypeW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetTimeZoneInformation
HeapSize
GetLocaleInfoW
FlushFileBuffers
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
SetHandleCount
IsValidCodePage
GetOEMCP
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStdHandle
HeapCreate
IsProcessorFeaturePresent
CreateProcessA
MoveFileA
ExitProcess
lstrlenA
IsDebuggerPresent
HeapReAlloc
LCMapStringW
GetCPInfo
GetStartupInfoW
HeapSetInformation
GetCommandLineW
ResumeThread
ExitThread
FindNextFileW
FindFirstFileExW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
GetSystemTimeAsFileTime
InterlockedIncrement
InterlockedExchange
DeleteCriticalSection
EncodePointer
DecodePointer
GetACP
GetLastError
GetCurrentDirectoryW
SetCurrentDirectoryW
GetTickCount
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
SetFilePointer
GetFileType
DuplicateHandle
SystemTimeToFileTime
DosDateTimeToFileTime
CreateDirectoryW
SetFileTime
LocalFileTimeToFileTime
MulDiv
GetDateFormatW
GetTimeFormatW
GlobalUnlock
GlobalLock
GlobalAlloc
VirtualAlloc
GetSystemInfo
VirtualFree
VirtualQuery
SetLastError
GetModuleFileNameA
FormatMessageA
LoadLibraryA
GetModuleHandleExA
GetModuleHandleA
VirtualProtect
HeapFree
HeapAlloc
RtlUnwind
RaiseException
MoveFileW
GetTimeFormatA
GetDateFormatA
GetKeyState
MessageBoxW
ShowWindow
GetWindowTextLengthW
GetWindowTextW
MapWindowPoints
CreateAcceleratorTableW
InvalidateRgn
SendMessageA
GetCaretPos
GetSysColor
ClientToScreen
ShowCaret
HideCaret
SetRect
CharPrevW
DrawTextW
FillRect
LoadIconW
GetWindowRgn
MoveWindow
InflateRect
OffsetRect
SetCursor
GetGestureInfo
GetCursorPos
IsWindowVisible
PtInRect
ReleaseCapture
SetCapture
GetUpdateRect
BeginPaint
EndPaint
IsRectEmpty
CharNextW
IsIconic
GetMonitorInfoW
MonitorFromWindow
IsZoomed
GetClientRect
ScreenToClient
SetWindowRgn
GetWindowRect
SetWindowPos
SetWindowLongW
GetWindowLongW
wsprintfW
DefWindowProcW
DestroyWindow
IsWindow
CreateWindowExW
PostQuitMessage
DispatchMessageW
TranslateMessage
SetFocus
GetMessageW
EnableWindow
GetWindow
GetParent
SendMessageW
LoadImageW
RegisterClassW
LoadCursorW
RegisterClassExW
GetClassInfoExW
CallWindowProcW
GetPropW
SetPropW
PostMessageW
AdjustWindowRectEx
GetMenu
MessageBoxA
ReleaseDC
SetWindowTextW
GetDC
RedrawWindow
SetTimer
GetCaretBlinkTime
KillTimer
SetCaretPos
CreateCaret
IntersectRect
GetFocus
SetGestureConfig
InvalidateRect
UpdateLayeredWindow
GetSaveFileNameW
RegQueryValueExW
RegOpenKeyW
CommandLineToArgvW
SHFileOperationW
SHCreateDirectoryExW
Shell_NotifyIconW
CLSIDFromProgID
OleLockRunning
CreateStreamOnHGlobal
CoSetProxyBlanket
CoCreateInstance
CoInitializeSecurity
CoInitializeEx
CoUninitialize
CLSIDFromString
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetLBound
SafeArrayGetUBound
SysAllocStringLen
VariantInit
SysAllocString
SysFreeString
VariantClear
DebugCreate
htonl
inet_ntoa
inet_addr
connect
socket
send
recv
closesocket
WSAStartup
WSACleanup
htons
gethostname
gethostbyname
gethostbyaddr
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipStringFormatGetGenericTypographic
GdipSetTextRenderingHint
GdipDeleteStringFormat
GdipFillRectangleI
GdipDrawString
GdipMeasureString
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipSetStringFormatFlags
GdipDrawImageRectI
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipDisposeImage
GdipCloneImage
GdipGetImageWidth
GdipGetImageHeight
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipImageSelectActiveFrame
GdipGetPropertyItemSize
GdiplusStartup
GdiplusShutdown
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipFree
GdipGetPropertyItem
GdipAlloc
GdipCreatePen1
GdipDeletePen
GdipCreatePath
GdipCloneStringFormat
GdipFillPath
GdipSetSmoothingMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipAddPathArcI
GdipClosePathFigure
GdipDeletePath
GdipDeleteFont
WinHttpCloseHandle
WinHttpOpen
WinHttpConnect
WinHttpOpenRequest
WinHttpAddRequestHeaders
WinHttpSendRequest
WinHttpReceiveResponse
WinHttpQueryHeaders
WinHttpQueryDataAvailable
WinHttpReadData
BitBlt
RestoreDC
SaveDC
CreateCompatibleBitmap
SelectObject
CreateDIBSection
CreateCompatibleDC
GetTextMetricsW
EnumFontsW
PtInRegion
CreateRectRgn
SelectClipRgn
CombineRgn
CreateRectRgnIndirect
GetClipBox
Rectangle
SetStretchBltMode
CreateSolidBrush
LineTo
MoveToEx
CreatePenIndirect
RoundRect
SetTextColor
SetBkMode
TextOutW
GetTextExtentPoint32W
GetCharABCWidthsW
SetBkColor
ExtSelectClipRgn
GetObjectA
GetDeviceCaps
DeleteDC
GetStockObject
GetObjectW
CreateFontIndirectW
CreatePen
StretchBlt
DeleteObject
CreateRoundRectRgn
_TrackMouseEvent
ord17
ImmSetCompositionWindow
ImmGetContext
ImmReleaseContext
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ