General
-
Target
2024-06-14_0f3a217c2f0bce63a93d7658519a9304_mafia
-
Size
1015KB
-
Sample
240614-cgh7wa1enf
-
MD5
0f3a217c2f0bce63a93d7658519a9304
-
SHA1
0f54001b430bf5609cec53d69271a92ce8a8aded
-
SHA256
92506d249d78ad56985a26c0ae2da5abcd00879ef96a82839a79a75fd071ff1f
-
SHA512
9d32f1277e82ee3c8d894f4b70815c36e83eb6e02102cc508effee09d0c32ffc85c536ad3c243012676250c4bcea5071bc74b9eb832db3b1c1a552f3552ab260
-
SSDEEP
24576:iaXNJQVJvxC3ZDobLzB/3gQvExFpdhC55AKDqsc53vTiixLm:GJvCZU7B/gkUrMvLqscVhx6
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-14_0f3a217c2f0bce63a93d7658519a9304_mafia.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-14_0f3a217c2f0bce63a93d7658519a9304_mafia.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-14_0f3a217c2f0bce63a93d7658519a9304_mafia
-
Size
1015KB
-
MD5
0f3a217c2f0bce63a93d7658519a9304
-
SHA1
0f54001b430bf5609cec53d69271a92ce8a8aded
-
SHA256
92506d249d78ad56985a26c0ae2da5abcd00879ef96a82839a79a75fd071ff1f
-
SHA512
9d32f1277e82ee3c8d894f4b70815c36e83eb6e02102cc508effee09d0c32ffc85c536ad3c243012676250c4bcea5071bc74b9eb832db3b1c1a552f3552ab260
-
SSDEEP
24576:iaXNJQVJvxC3ZDobLzB/3gQvExFpdhC55AKDqsc53vTiixLm:GJvCZU7B/gkUrMvLqscVhx6
Score9/10-
UPX dump on OEP (original entry point)
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Loads dropped DLL
-