Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-20_767dd081c08034762fd74ab9fcbc51eb_mafia.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
2024-06-20_767dd081c08034762fd74ab9fcbc51eb_mafia.exe
Resource
win10v2004-20240611-en
Target
2024-06-20_767dd081c08034762fd74ab9fcbc51eb_mafia
Size
3.8MB
MD5
767dd081c08034762fd74ab9fcbc51eb
SHA1
50c2eeb0a150907ffdfb3abb712c9c11ca79af6b
SHA256
3ee33db9b0580e3b35113a8eebe107bb3d58812d1b1a158fc41350835142ccd1
SHA512
145c9226a2b9ec77111e33312609418aaa927fd3f5734767892525c8abe664912a82b3966225f0d766609155a895f6ebcade247e6f4be68a53d3be5422013760
SSDEEP
49152:T1jiZzdTIqpsgpae3twyTIiTlT0MjhOhIewbkRr+2BK/KRsqSVEqOzJ:Thc5sgpGyTIUT0Mjharn
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
D:\work\a242174c93c6a253\bin_x86\v100\Release Static\neutral\Defraggler.pdb
InternetOpenUrlW
InternetOpenW
HttpQueryInfoW
InternetReadFile
InternetCrackUrlW
InternetConnectW
HttpOpenRequestW
HttpAddRequestHeadersW
InternetQueryDataAvailable
HttpSendRequestW
InternetSetOptionW
InternetCloseHandle
LsaGetLogonSessionData
LsaFreeReturnBuffer
LsaEnumerateLogonSessions
NetUserEnum
NetApiBufferFree
UnmapViewOfFile
CreateEventA
GetFileAttributesExW
SetFileTime
GetProcessHeap
HeapFree
HeapAlloc
lstrcmpA
RemoveDirectoryW
AllocConsole
CreateProcessW
GetStartupInfoW
SetUnhandledExceptionFilter
GetVersion
InterlockedDecrement
InterlockedIncrement
ExitProcess
OpenProcess
GetCurrentProcessId
CreateWaitableTimerW
SetWaitableTimer
SetThreadPriority
GetModuleHandleA
LoadLibraryA
CreateWaitableTimerA
WaitForMultipleObjectsEx
OpenEventA
WaitForSingleObjectEx
SetStdHandle
GetConsoleMode
GetConsoleCP
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
HeapCreate
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
LoadLibraryExW
GetCPInfo
RtlUnwind
IsDebuggerPresent
UnhandledExceptionFilter
HeapSetInformation
ExitThread
FormatMessageA
AreFileApisANSI
MapViewOfFile
SetEndOfFile
GetStringTypeW
InterlockedPopEntrySList
IsProcessorFeaturePresent
InterlockedPushEntrySList
InterlockedCompareExchange
HeapSize
HeapReAlloc
HeapDestroy
SetFilePointerEx
GetOverlappedResult
TerminateProcess
DuplicateHandle
CreatePipe
ResumeThread
SuspendThread
GetVersionExA
OutputDebugStringA
GetCurrentDirectoryA
GetModuleFileNameA
ReadProcessMemory
GetThreadContext
OpenEventW
OpenMutexW
QueryDosDeviceW
GetVolumeInformationW
FindVolumeClose
FindNextVolumeW
FindFirstVolumeW
SetErrorMode
GetDiskFreeSpaceExW
FindNextChangeNotification
FindCloseChangeNotification
FindFirstChangeNotificationW
GetVolumePathNameW
GetVolumePathNamesForVolumeNameW
GetDriveTypeW
VirtualFree
VirtualAlloc
GetFileSizeEx
GetLogicalDrives
EnumResourceNamesW
GetFileInformationByHandle
GetFullPathNameW
GetSystemWindowsDirectoryW
GetDiskFreeSpaceW
GetVolumeNameForVolumeMountPointW
CreateMutexW
CreateSemaphoreW
CreateThread
TerminateThread
RtlCaptureContext
VirtualQuery
ReleaseSemaphore
GetSystemTime
lstrlenA
GetWindowsDirectoryW
GetTimeFormatW
GetDateFormatW
GetCurrentDirectoryW
GlobalUnlock
GlobalLock
GlobalAlloc
GetPriorityClass
CreateFileMappingW
SetPriorityClass
GetSystemDirectoryW
lstrcmpW
DeviceIoControl
SystemTimeToTzSpecificLocalTime
CompareFileTime
QueryPerformanceFrequency
QueryPerformanceCounter
GetNumberFormatW
GetLocaleInfoW
LocalFree
FormatMessageW
lstrcmpiW
CompareStringW
MulDiv
InterlockedExchange
GetFileSize
SetFilePointer
GetPrivateProfileStructW
WritePrivateProfileStructW
WritePrivateProfileStringW
GetEnvironmentVariableA
MoveFileExW
GetEnvironmentVariableW
InitializeCriticalSection
lstrlenW
GetPrivateProfileStringW
FileTimeToSystemTime
GetSystemTimeAsFileTime
MultiByteToWideChar
SystemTimeToFileTime
RaiseException
FlushInstructionCache
GetCurrentProcess
GetCurrentThread
ReadFile
DeleteFileW
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FindClose
FindNextFileW
FindFirstFileW
GetFileAttributesW
Sleep
GetTickCount
InitializeCriticalSectionAndSpinCount
CreateFileA
CreateEventW
GetTempPathW
GetModuleHandleW
CreateFileW
LoadLibraryW
GetProcAddress
FreeLibrary
ResetEvent
WaitForMultipleObjects
GetHandleInformation
GetCommandLineW
GetModuleFileNameW
GetComputerNameExW
GetSystemInfo
GetVersionExW
GlobalMemoryStatusEx
SetLastError
SetConsoleTextAttribute
WriteConsoleW
GetStdHandle
GetLocalTime
WideCharToMultiByte
GetCurrentThreadId
SetEvent
WriteFile
FlushFileBuffers
GetLastError
WaitForSingleObject
CloseHandle
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
WaitNamedPipeW
TransactNamedPipe
SetNamedPipeHandleState
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
SetEnvironmentVariableA
LCMapStringW
SetScrollInfo
EnableScrollBar
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
DrawFrameControl
SetScrollPos
BringWindowToTop
SetRect
RegisterWindowMessageW
SetForegroundWindow
GetMenuDefaultItem
GetMessageW
DispatchMessageW
UnregisterClassW
FrameRect
EnumWindows
GetScrollPos
GetLastActivePopup
SetCursorPos
GetMessagePos
PeekMessageW
SetWindowPlacement
GetWindowPlacement
GetWindowThreadProcessId
GetScrollInfo
TranslateMessage
LoadAcceleratorsW
GetClassInfoW
RegisterClassW
CharLowerW
CharLowerA
TranslateAcceleratorW
SetActiveWindow
SetMenu
IsZoomed
PostQuitMessage
EnumChildWindows
GetMenuItemInfoW
CheckMenuRadioItem
AdjustWindowRectEx
GetMenu
TrackPopupMenu
GetMenuStringW
SetMenuItemInfoW
InsertMenuW
SetMenuInfo
GetMenuInfo
DeleteMenu
GetMenuItemCount
EnableMenuItem
GetMenuItemID
CreateDialogParamW
GetClassInfoExW
RegisterClassExW
GetDialogBaseUnits
InflateRect
IsDialogMessageW
DrawEdge
TrackMouseEvent
GetWindowDC
CopyRect
MonitorFromPoint
GetSubMenu
LoadMenuW
IsMenu
TrackPopupMenuEx
DestroyMenu
DrawIconEx
GetSysColorBrush
DrawTextExW
ClientToScreen
EnableWindow
SetDlgItemTextW
IsWindowEnabled
GetSysColor
GetFocus
DrawFocusRect
SetCursor
SetFocus
SetCapture
GetCapture
ReleaseCapture
GetDlgCtrlID
GetCursorPos
PtInRect
GetClassNameW
LoadCursorW
SystemParametersInfoW
CreateWindowExW
CharNextW
CallWindowProcW
SetRectEmpty
LoadBitmapW
GetWindowTextLengthW
GetWindowTextW
DefWindowProcW
DrawTextW
OffsetRect
SendMessageW
GetDC
ReleaseDC
LoadStringW
GetForegroundWindow
EndDialog
FillRect
MoveWindow
ShowWindow
RedrawWindow
UpdateWindow
InvalidateRect
GetDesktopWindow
GetWindow
MonitorFromWindow
GetMonitorInfoW
GetParent
MapWindowPoints
SetWindowPos
GetClientRect
EndPaint
BeginPaint
KillTimer
SetTimer
ScreenToClient
GetWindowRect
SetWindowTextW
GetDlgItem
IsWindow
LoadImageW
LoadIconW
CopyIcon
UnregisterClassA
DestroyIcon
IsWindowVisible
GetWindowLongW
CallNextHookEx
PostMessageW
GetKeyboardState
UnhookWindowsHookEx
SetWindowsHookExW
DestroyWindow
SetWindowLongW
DialogBoxParamW
MessageBoxW
GetActiveWindow
GetSystemMetrics
GetDlgItemTextW
IsClipboardFormatAvailable
GetClipboardData
SetMenuDefaultItem
LineTo
PatBlt
CreatePatternBrush
GetTextMetricsW
Polygon
Polyline
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
GetDeviceCaps
CreateFontIndirectW
MoveToEx
SetTextColor
SetBkMode
GetTextColor
SetBkColor
ExtTextOutW
DPtoLP
GetClipRgn
SelectClipRgn
CreateRectRgnIndirect
CombineRgn
CreateRectRgn
GetClipBox
CreatePen
GetCurrentObject
CreateBitmap
GetTextExtentPoint32W
DeleteObject
GetObjectW
TextOutW
DeleteDC
SetViewportOrgEx
GetStockObject
SelectObject
CreateSolidBrush
SelectPalette
RealizePalette
SetPolyFillMode
CreatePalette
Rectangle
SaveDC
RestoreDC
OffsetWindowOrgEx
CreateDIBSection
GetSaveFileNameW
GetOpenFileNameW
ChooseColorW
RegCloseKey
GetUserNameW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
QueryServiceStatus
StartServiceW
ControlService
OpenServiceW
OpenSCManagerW
CryptGenRandom
CryptAcquireContextA
CryptReleaseContext
CloseServiceHandle
FreeSid
CheckTokenMembership
AllocateAndInitializeSid
AdjustTokenPrivileges
LookupPrivilegeValueW
RegQueryInfoKeyW
InitiateSystemShutdownW
OpenProcessToken
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
GetUserNameA
ShellExecuteExW
ord645
SHGetPathFromIDListW
ord644
ord4
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHOpenFolderAndSelectItems
ShellExecuteW
SHGetFolderPathW
SHEmptyRecycleBinW
SHGetFileInfoW
SHBindToParent
Shell_NotifyIconW
ord2
SHGetDesktopFolder
CommandLineToArgvW
SHQueryRecycleBinW
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree
CreateStreamOnHGlobal
CoTaskMemRealloc
CoInitialize
CoSetProxyBlanket
CoInitializeEx
CoCreateInstance
VarBstrFromR8
VariantChangeType
VariantClear
VariantInit
VarUI4FromStr
SysFreeString
SysAllocString
PathIsDirectoryW
PathIsDirectoryEmptyW
PathCombineW
PathFindFileNameA
StrFormatKBSizeW
PathRemoveExtensionW
PathAppendW
PathRemoveFileSpecW
PathAddExtensionW
PathFileExistsW
PathMatchSpecW
ImageList_Destroy
ImageList_Create
ImageList_GetImageCount
ImageList_SetBkColor
ImageList_GetIcon
ImageList_Add
CreateStatusWindowW
CreatePropertySheetPageW
PropertySheetW
DestroyPropertySheetPage
InitCommonControlsEx
ImageList_Write
ImageList_Read
ImageList_Draw
ImageList_GetIconSize
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_Remove
ImageList_SetImageCount
_TrackMouseEvent
AlphaBlend
GradientFill
TransparentBlt
GetFileVersionInfoA
GetFileVersionInfoW
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
VerQueryValueW
GetAdaptersAddresses
CertCloseStore
CryptMsgGetParam
CryptQueryObject
CertFreeCertificateContext
CertGetNameStringW
CertFindCertificateInStore
CryptDecodeObject
CryptMsgClose
WinVerifyTrust
EnumProcessModules
GetModuleFileNameExW
EnumProcesses
GetProcessImageFileNameW
??_B?1??get_instance@?$singleton@VBreakpadWrapper@@@serialization@boost@@CAAAVBreakpadWrapper@@XZ@51
?get_const_instance@?$singleton@VBreakpadWrapper@@@serialization@boost@@SAABVBreakpadWrapper@@XZ
?get_instance@?$singleton@VBreakpadWrapper@@@serialization@boost@@CAAAVBreakpadWrapper@@XZ
?get_mutable_instance@?$singleton@VBreakpadWrapper@@@serialization@boost@@SAAAVBreakpadWrapper@@XZ
?instance@?$singleton@VBreakpadWrapper@@@serialization@boost@@0AAVBreakpadWrapper@@A
?t@?1??get_instance@?$singleton@VBreakpadWrapper@@@serialization@boost@@CAAAVBreakpadWrapper@@XZ@4V?$singleton_wrapper@VBreakpadWrapper@@@detail@34@A
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ