Analysis
-
max time kernel
148s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
03-06-2024 11:59
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-03_d87588c1687e7baa4eb5b15d66fd99bf_mafia.exe
Resource
win7-20240419-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-06-03_d87588c1687e7baa4eb5b15d66fd99bf_mafia.exe
Resource
win10v2004-20240508-en
2 signatures
150 seconds
General
-
Target
2024-06-03_d87588c1687e7baa4eb5b15d66fd99bf_mafia.exe
-
Size
1.9MB
-
MD5
d87588c1687e7baa4eb5b15d66fd99bf
-
SHA1
76fd7d33bb76784917ef3e34249bb1d75e8c992f
-
SHA256
4e83c496cc266c8c6688560b6b6de67424a9145f1e20d2b86d138cbb0c6e56e7
-
SHA512
391faceaaf064fcd1a6807566e15eabc6328ea76b0ad4a9f31b042c031d441bc0cd2e5ab9a4587847e81bec361d15a640f32f5c437216d6f3de93a7f71d57038
-
SSDEEP
49152:Urt2CGHdQ1iz3uNAEkZov7DK7a1e5Jd8zrMPBAfj:UhUqAEkiv7Dia1eG6o
Score
1/10
Malware Config
Signatures
-
Suspicious use of FindShellTrayWindow 3 IoCs
pid Process 4468 2024-06-03_d87588c1687e7baa4eb5b15d66fd99bf_mafia.exe 4468 2024-06-03_d87588c1687e7baa4eb5b15d66fd99bf_mafia.exe 4468 2024-06-03_d87588c1687e7baa4eb5b15d66fd99bf_mafia.exe -
Suspicious use of SendNotifyMessage 3 IoCs
pid Process 4468 2024-06-03_d87588c1687e7baa4eb5b15d66fd99bf_mafia.exe 4468 2024-06-03_d87588c1687e7baa4eb5b15d66fd99bf_mafia.exe 4468 2024-06-03_d87588c1687e7baa4eb5b15d66fd99bf_mafia.exe