2024-05-31_915cef52f68c714f31463f84869c216f_mafia | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-31_915cef52f68c714f31463f84869c216f_mafia
Size

712KB
MD5

915cef52f68c714f31463f84869c216f
SHA1

803152fcc48d7d82125106e99f524b8875e30f94
SHA256

57dc6cf9e68c2e3a950293b0aa7630be93dc649e23d426d2d8840a3453ba7a26
SHA512

3d92223eab1c6fcebca4fe979e15b7ec46adc93a5c4c6128dd7ef7983fb299ccb1edf30f320bed7842367de978945cd0994e0dcdf922aeeb6cf8b82723515559
SSDEEP

12288:FU5rCOTeiDpTZgFwsHBrVs7Asdr1lmtBNZdCvq5TJLCvY90D8/LVBlVk736Y79G5:FUQOJDpTZgFw4s8sdaHNnCvq5TJLCvYR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-31_915cef52f68c714f31463f84869c216f_mafia

Files

2024-05-31_915cef52f68c714f31463f84869c216f_mafia
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 262KB - Virtual size: 283KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ