2024-06-10_b51ce02dda141b842a6a0947a314b6d6_mafia | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-10_b51ce02dda141b842a6a0947a314b6d6_mafia
Size

2.7MB
MD5

b51ce02dda141b842a6a0947a314b6d6
SHA1

be9b23407cb4de10e982f9443229fa4fcebbf049
SHA256

eee7fa08afdcf84795616994b1d9b94dfffedaf23e7396b9afe640928aa6fd3d
SHA512

b78195f2ba3f23581500daed4346a2d5d30fb29108529cd797b7b780e2726d24b8d10fc1398af8dfdb186b98dd2ce421a45f8beb3defe4c9166e1fe5cf5427df
SSDEEP

49152:U4ePtU83djcfQcBiSPeX22A1qnE4tT+nOl5VaLVFir7gS+pv+AVqKbgHQiQTWHJ+:reX2bqnE4tIOl5cLVFir7gS+pWEKQiQz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-10_b51ce02dda141b842a6a0947a314b6d6_mafia

Files

2024-06-10_b51ce02dda141b842a6a0947a314b6d6_mafia
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\p4client\Consumer\MainDev\Products\Release\Win32\MaxxAudioMeters.pdb

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

RT_CODE
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 468KB - Virtual size: 467KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 181KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 209KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ