Analysis
-
max time kernel
133s -
max time network
123s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
03/06/2024, 07:45
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-06-03_615220308ed17d8430e76b69cbf9874a_mafia.exe
Resource
win7-20231129-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-06-03_615220308ed17d8430e76b69cbf9874a_mafia.exe
Resource
win10v2004-20240508-en
2 signatures
150 seconds
General
-
Target
2024-06-03_615220308ed17d8430e76b69cbf9874a_mafia.exe
-
Size
4.7MB
-
MD5
615220308ed17d8430e76b69cbf9874a
-
SHA1
6cb625654e908364ae04c7055df62d2afe75e60e
-
SHA256
d4b638249018988a5d34184277e3ac1f7d195c4be47c9219b9d3fb6e3d7883b6
-
SHA512
f475a888c4e72b6eaa6a1cf9813d7f266d4d04c60e6e6766745983028c167fca6ddc6353da3c87675397314c4ca26f522ee464c369e682e09054730e5c8050dd
-
SSDEEP
98304:cje25VVSOTjNfs+utdr5Jq2MUrqNY1T5HaWzeTm:R+nThfsd1Jq2MUrqN2Haaeq
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
description pid Process Token: SeDebugPrivilege 60 2024-06-03_615220308ed17d8430e76b69cbf9874a_mafia.exe -
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 60 2024-06-03_615220308ed17d8430e76b69cbf9874a_mafia.exe