2024-06-15_7b3145de666aa064675a7692270f363f_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-15_7b3145de666aa064675a7692270f363f_mafia
Size

2.8MB
MD5

7b3145de666aa064675a7692270f363f
SHA1

7b5c70fc8d390a8b1390b8b58cd8010410554c3a
SHA256

3be922f5aecb37645a3a5ba5ed68b1ab588b421c845e490d19764bf43839780e
SHA512

9de810ee861106c2cc97f65c9a014e9f632446c701edadeef94d92e62cecc472f475179616b57436d9ec9cd40cffe17ced6dd58141cc2dffa59340de582f7666
SSDEEP

49152:UiOCopnjJBy7i6MA8EbsMU5jtLDqEWUqWnbyv4WvmEkOwK3O/lQhBGZ84YaW8P9R:FopnjJBGi6MAtsMU5jRqEWUqWnbyxkbL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-15_7b3145de666aa064675a7692270f363f_mafia

Files

2024-06-15_7b3145de666aa064675a7692270f363f_mafia
.exe windows:5 windows x86 arch:x86

e7966131e7a682d27eb133af5e6b9e69

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\TouchICUtility\TouchICUtility\Release\TouchICUtility.pdb

Imports

kernel32

FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetConsoleCP
GetConsoleMode
GetDriveTypeW
HeapCreate
WriteConsoleW
GetCurrentDirectoryW
CreateFileW
SetEnvironmentVariableA
GetStdHandle
LCMapStringW
IsValidCodePage
TerminateProcess
IsDebuggerPresent
UnhandledExceptionFilter
HeapSize
HeapQueryInformation
ExitThread
ExitProcess
GetFileType
SetStdHandle
HeapReAlloc
VirtualQuery
GetSystemInfo
VirtualAlloc
SizeofResource
GetStartupInfoW
HeapSetInformation
GetCommandLineA
GetDateFormatA
GetTimeFormatA
DecodePointer
EncodePointer
GetSystemTimeAsFileTime
RaiseException
HeapFree
HeapAlloc
GetStringTypeW
FindResourceExW
VirtualProtect
SearchPathA
GetTempPathA
GetTempFileNameA
GetNumberFormatA
SetErrorMode
GetSystemDirectoryW
GetOEMCP
GetCPInfo
GetACP
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
LocalAlloc
InterlockedIncrement
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoA
LoadLibraryExA
GetModuleHandleW
InterlockedExchange
GetProfileIntA
InterlockedDecrement
GetModuleFileNameW
ReleaseActCtx
CreateActCtxW
GetFileTime
GetFileSizeEx
GetTimeZoneInformation
IsProcessorFeaturePresent
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFileAttributesExA
GetFullPathNameA
GetVolumeInformationA
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
lstrcmpiA
GetThreadLocale
lstrcmpA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
InitializeCriticalSectionAndSpinCount
LoadLibraryW
lstrcmpW
FindResourceA
FreeResource
GlobalFree
CopyFileA
GlobalAlloc
FormatMessageA
LocalFree
lstrlenW
MultiByteToWideChar
lstrlenA
SetThreadPriority
ReadFile
WriteFile
GetOverlappedResult
GetWindowsDirectoryA
FreeLibrary
SetUnhandledExceptionFilter
VirtualProtectEx
WriteProcessMemory
CreateFileA
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GlobalSize
GlobalLock
GlobalUnlock
MulDiv
GlobalReAlloc
ActivateActCtx
DeactivateActCtx
SetLastError
GetProcAddress
GetModuleHandleA
LoadLibraryA
GetTickCount
CreateEventA
QueryPerformanceFrequency
QueryPerformanceCounter
SetEvent
FindFirstFileA
FindNextFileA
FindClose
GetFileAttributesA
SetFileAttributesA
DeleteFileA
RemoveDirectoryA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetLocalTime
SuspendThread
InitializeCriticalSection
lstrcpyA
CreateDirectoryA
ResumeThread
DeleteCriticalSection
GetLastError
GetVersionExA
ResetEvent
EnterCriticalSection
LeaveCriticalSection
CloseHandle
CreateThread
Sleep
WaitForSingleObject
GetModuleFileNameA
WideCharToMultiByte
FindResourceW
LoadResource
LockResource
CompareStringW

user32

CloseClipboard
SetClipboardData
OpenClipboard
LockWindowUpdate
SetCursorPos
CreateAcceleratorTableA
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToAsciiEx
DrawEdge
SetClassLongA
DestroyAcceleratorTable
DrawIconEx
GetIconInfo
HideCaret
DrawFocusRect
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
CharNextA
WaitMessage
GetMenuDefaultItem
SetMenuDefaultItem
IsMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
NotifyWinEvent
MessageBeep
SetWindowRgn
LoadMenuW
DeleteMenu
UnpackDDElParam
ReuseDDElParam
LoadImageA
DestroyIcon
LoadAcceleratorsA
InsertMenuItemA
CreatePopupMenu
BringWindowToTop
TranslateAcceleratorA
PostThreadMessageA
LoadCursorW
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
CopyImage
RealChildWindowFromPoint
GetSysColorBrush
GetMenuItemInfoA
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
GetMessageA
PostQuitMessage
RegisterClipboardFormatA
MapVirtualKeyA
GetKeyNameTextA
GetWindowThreadProcessId
EndPaint
BeginPaint
CharUpperA
SetWindowTextA
IsDialogMessageA
SetDlgItemInt
GetDlgItemInt
CheckDlgButton
DrawStateA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
EnableMenuItem
CheckMenuItem
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
SetWindowsHookExA
CallNextHookEx
EmptyClipboard
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetLastActivePopup
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
PeekMessageA
MonitorFromWindow
GetMonitorInfoA
ScrollWindow
SetMenu
SetScrollRange
GetScrollRange
SetForegroundWindow
ShowScrollBar
ValidateRect
GetClassInfoExA
AdjustWindowRectEx
EqualRect
DeferWindowPos
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
GetMenu
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GetWindowTextLengthA
GetWindowTextA
GetScrollPos
SetScrollPos
SetFocus
GetMenuState
GetMenuStringA
GetMenuItemID
InsertMenuA
GetMenuItemCount
RegisterClassExA
CreateWindowExA
UnregisterClassA
RegisterDeviceNotificationA
CopyIcon
DrawFrameControl
TranslateMessage
DispatchMessageA
LoadIconW
IsIconic
GetSystemMenu
AppendMenuA
MessageBoxA
RegisterClassA
CallWindowProcA
GetScrollInfo
SetParent
GetWindow
LoadIconA
DrawIcon
IsZoomed
FrameRect
ShowWindow
GetDesktopWindow
RedrawWindow
MapWindowPoints
SetWindowLongA
LoadImageW
CharUpperBuffA
IsCharLowerA
MapVirtualKeyExA
GetWindowRgn
DestroyCursor
SubtractRect
GetUpdateRect
GetDoubleClickTime
WindowFromPoint
ClientToScreen
IsRectEmpty
CopyRect
ClipCursor
GetMessagePos
GrayStringA
DrawTextExA
TabbedTextOutA
GetSystemMetrics
IsClipboardFormatAvailable
CreateMenu
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
GetClassLongA
DefFrameProcA
ReleaseCapture
IsWindow
MoveWindow
SetWindowPos
GetWindowLongA
GetClassInfoA
DefWindowProcA
SetCapture
GetCapture
GetWindowDC
ScreenToClient
InvertRect
IntersectRect
PtInRect
GetSysColor
DrawTextA
SetCursor
LoadCursorA
FillRect
InflateRect
SystemParametersInfoA
GetAsyncKeyState
OffsetRect
SetRect
LoadBitmapW
GetFocus
LoadMenuA
GetSubMenu
RemoveMenu
DestroyMenu
GetCursorPos
TrackPopupMenu
InvalidateRect
UpdateWindow
ReleaseDC
GetDC
GetWindowRect
GetKeyState
SendMessageA
GetParent
KillTimer
SetTimer
IsWindowVisible
PostMessageA
EnableWindow
GetClientRect

gdi32

ExtSelectClipRgn
DeleteDC
CreatePatternBrush
SelectPalette
GetObjectType
CreateHatchBrush
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
DPtoLP
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
CreateRoundRectRgn
CreateDIBSection
GetTextColor
GetRgnBox
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
CreatePolygonRgn
OffsetRgn
SetDIBColorTable
SetPixel
EnumFontFamiliesExA
ExtFloodFill
SetPaletteEntries
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
SetPixelV
GetTextFaceA
IntersectClipRect
ExcludeClipRect
CreateEllipticRgn
GetClipBox
LineTo
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetPixel
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
SetLayout
GetLayout
SetTextAlign
Polyline
CreatePen
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
CreateDCA
CopyMetaFileA
Ellipse
DeleteObject
GetStockObject
Polygon
GetTextMetricsA
PatBlt
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
BitBlt
GetBkColor
CreateFontA
GetCurrentObject
Rectangle
SelectObject
GetDeviceCaps
CreateSolidBrush
CreateFontIndirectA
GetObjectA
GetTextExtentPoint32A
StretchBlt
CreateCompatibleDC
CreateCompatibleBitmap
MoveToEx

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCloseKey
RegEnumKeyExA
RegEnumValueA

shell32

DragQueryFileA
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
SHGetFileInfoA
SHGetDesktopFolder
SHAppBarMessage
DragFinish
SHGetMalloc
SHGetSpecialFolderLocation

comctl32

_TrackMouseEvent
InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathStripToRootA
PathIsUNCA
PathRemoveFileSpecW
PathFindExtensionA
PathIsDirectoryA
PathFindFileNameA

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
CoRevokeClassObject
CoGetClassObject
CreateStreamOnHGlobal
CoInitialize
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleInitialize
CoFreeUnusedLibraries
OleGetClipboard
OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
CoInitializeEx
CoCreateInstance
CoUninitialize
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
OleLockRunning
OleUninitialize
CoTaskMemFree
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
DoDragDrop
OleCreateMenuDescriptor

oleaut32

VariantTimeToSystemTime
SysAllocString
OleCreateFontIndirect
VarBstrFromDate
SafeArrayDestroy
VariantCopy
SysStringLen
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocStringByteLen
SysFreeString
VarUdateFromDate
SystemTimeToVariantTime

oledlg

ord8

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

dbghelp

MiniDumpWriteDump

ws2_32

ntohl

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 328KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 475KB - Virtual size: 506KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 247KB - Virtual size: 247KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e7966131e7a682d27eb133af5e6b9e69

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

dbghelp

ws2_32

oleacc

imm32

winmm

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 328KB - Virtual size: 328KB

.data Size: 475KB - Virtual size: 506KB

.rsrc Size: 168KB - Virtual size: 167KB

.reloc Size: 247KB - Virtual size: 247KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 328KB - Virtual size: 328KB

.data
Size: 475KB - Virtual size: 506KB

.rsrc
Size: 168KB - Virtual size: 167KB

.reloc
Size: 247KB - Virtual size: 247KB