2024-06-28_f0de6ef6d275bc1e9e0a79a00205f8fe_floxif_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-28_f0de6ef6d275bc1e9e0a79a00205f8fe_floxif_mafia
Size

760KB
MD5

f0de6ef6d275bc1e9e0a79a00205f8fe
SHA1

25f1f6b73e8c82a20e57f84f6a052955073d2588
SHA256

3d0a6889cafc47f6531c7b5a30b2e028715497c28267fb4627db4df5c4ab63f4
SHA512

fa37cae108ced11e37ad7b37ef8a90bbd3c40d17f026ad008bcdd86fc5ffb9b14cef0b48fde9683445c88bc31209ee04ae45c8b86734e2f91fbe16e78d252c36
SSDEEP

12288:ehpsix5sOQ6F+1zZiEpqk2jhod0IGD3eczPyVgomIYBXrkrTbMH0aBjvrEH7JmIi:ehpsp2+xZEk2zIGD3eczPydbYByTbMHD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-28_f0de6ef6d275bc1e9e0a79a00205f8fe_floxif_mafia

Files

2024-06-28_f0de6ef6d275bc1e9e0a79a00205f8fe_floxif_mafia
.exe windows:5 windows x86 arch:x86

63c324c74da0be56d8512955de1e375d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\flac-1.3.1\objs\Release\bin\flac.pdb

Imports

kernel32

GetFileType
SetFilePointerEx
SetEndOfFile
CloseHandle
LoadLibraryA
GetProcAddress
WideCharToMultiByte
FreeLibrary
MultiByteToWideChar
GetStdHandle
GetConsoleScreenBufferInfo
WriteConsoleW
CreateFileW
GetFileInformationByHandle
GetLastError
FormatMessageA
GetThreadLocale
EnterCriticalSection
LeaveCriticalSection
ReadFile
FileTimeToSystemTime
FileTimeToLocalFileTime
PeekNamedPipe
HeapFree
HeapReAlloc
GetSystemTimeAsFileTime
InterlockedDecrement
InterlockedIncrement
HeapAlloc
GetModuleHandleW
ExitProcess
DecodePointer
GetCommandLineA
HeapSetInformation
FindClose
GetDriveTypeW
FindFirstFileExW
SetFileAttributesW
GetFileAttributesW
DeleteFileW
MoveFileW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetStartupInfoW
DeleteCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
TerminateProcess
GetCurrentProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
Sleep
WriteFile
GetConsoleCP
GetConsoleMode
SetFilePointer
SetStdHandle
HeapCreate
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
GetModuleFileNameW
LoadLibraryW
FlushFileBuffers
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
IsProcessorFeaturePresent
RtlUnwind
GetFullPathNameW
GetCurrentDirectoryW
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetTimeZoneInformation
CompareStringW
SetEnvironmentVariableA
LCMapStringW
HeapSize
GetProcessHeap

Sections

.text
Size: 481KB - Virtual size: 480KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.trace
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63c324c74da0be56d8512955de1e375d

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

Sections

.text Size: 481KB - Virtual size: 480KB

.rdata Size: 156KB - Virtual size: 156KB

.data Size: 10KB - Virtual size: 2.8MB

.trace Size: 6KB - Virtual size: 5KB

_RDATA Size: 1KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 436B

.reloc Size: 27KB - Virtual size: 27KB

.text
Size: 481KB - Virtual size: 480KB

.rdata
Size: 156KB - Virtual size: 156KB

.data
Size: 10KB - Virtual size: 2.8MB

.trace
Size: 6KB - Virtual size: 5KB

_RDATA
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 27KB - Virtual size: 27KB