2024-06-30_aaacba625839eb7733c04692766c24a1_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-30_aaacba625839eb7733c04692766c24a1_mafia
Size

3.3MB
MD5

aaacba625839eb7733c04692766c24a1
SHA1

aa6179ad52a0194721959774067838dc38749efa
SHA256

03a3f6c6a7419e69e6547f00727088765c83266ea2344a2fa676fe19218de0e9
SHA512

c88e9e1f21127b6589273a9e6688e64bb1e088894e5b635a58fea87a2941d94ee4a0d93e16ce81179139d72b8cde5fbcc663984b6b01d3adb11bf80094138d70
SSDEEP

49152:u5Bg+jvmz7ZP5thgiFDTffZAsm0XdCEzmu7SH8:u5Bg+zmz7ZPLFWP0XzK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-30_aaacba625839eb7733c04692766c24a1_mafia

Files

2024-06-30_aaacba625839eb7733c04692766c24a1_mafia
.exe windows:5 windows x86 arch:x86

1f4b91901fcc11b86c65613dbb6f19c9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\V2_12\Release\CarEff_4x6_15.pdb

Imports

gdiplus

GdipDrawImageRectI
GdipGraphicsClear
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipSaveImageToFile
GdipDeleteGraphics
GdipSetSmoothingMode
GdipCreatePath
GdipDeletePath
GdipAddPathEllipseI
GdipCreatePathGradientFromPath
GdipDeleteBrush
GdipFree
GdipAlloc
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipDrawImageI
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromScan0
GdipImageSelectActiveFrame
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipDisposeImage
GdipCloneImage
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipDrawLines
GdipFillPolygon
GdipCreateSolidFill
GdipDrawLineI
GdipDrawArcI
GdipSetPenDashStyle
GdipDrawRectangleI
GdipDrawEllipseI
GdipDeletePen
GdipCreatePen1
GdipFillRectangleI
GdipSetPathGradientCenterPoint
GdipGetPathGradientPointCount
GdipSetPathGradientSurroundColorsWithCount
GdipSetPathGradientCenterColor
GdipCloneBrush
GdipCreateFromHDC

kernel32

MultiByteToWideChar
GetModuleFileNameW
CreateDirectoryW
SetCurrentDirectoryW
FlushInstructionCache
GetCurrentProcess
HeapDestroy
HeapFree
HeapAlloc
HeapCreate
MulDiv
GetProcAddress
LoadLibraryW
FreeLibrary
GetFileAttributesW
LockResource
LoadResource
SizeofResource
FindResourceW
FindClose
FindFirstFileW
SetLastError
FreeResource
GetFullPathNameW
GetCurrentThreadId
GetVersionExW
GetLocalTime
GetVersionExA
GetModuleHandleW
IsBadReadPtr
CreateMutexW
GetModuleHandleA
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
InterlockedExchange
SetConsoleCtrlHandler
FatalAppExitA
GetTimeZoneInformation
SetStdHandle
GetConsoleMode
CreateThread
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsProcessorFeaturePresent
LCMapStringW
GetFileType
SetHandleCount
SetFilePointer
InitializeCriticalSectionAndSpinCount
GetStringTypeW
HeapSize
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetLocaleInfoW
GetStdHandle
ExitProcess
RaiseException
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
HeapReAlloc
GetStartupInfoW
HeapSetInformation
GetCommandLineW
ExitThread
EncodePointer
DecodePointer
GetSystemTimeAsFileTime
DosDateTimeToFileTime
lstrcpyW
GetFileSize
MapViewOfFile
CreateFileMappingW
GetPrivateProfileStructW
WritePrivateProfileStructW
GlobalUnlock
TerminateThread
GlobalLock
GlobalAlloc
InterlockedIncrement
InterlockedDecrement
GetConsoleCP
ReleaseMutex
UnmapViewOfFile
CreateSemaphoreW
ReleaseSemaphore
SetConsoleTextAttribute
GetConsoleScreenBufferInfo
CreateDirectoryA
lstrlenA
GetModuleFileNameA
GetModuleHandleExA
OpenMutexW
LeaveCriticalSection
EnterCriticalSection
GetTickCount
DeleteCriticalSection
InitializeCriticalSection
Sleep
GetLastError
WriteFile
CancelIo
WaitForSingleObject
ReadFile
ResetEvent
SetEvent
CreateEventW
CreateFileW
OutputDebugStringA
WideCharToMultiByte
CloseHandle
IsValidLocale
CreateFileA
FlushFileBuffers
WriteConsoleW
SetEndOfFile
GetProcessHeap
CompareStringW
SetEnvironmentVariableA
LocalFree
lstrlenW
lstrcpyA
MoveFileA
DeleteFileA
LoadLibraryA
InterlockedCompareExchange

user32

MapVirtualKeyA
CharLowerBuffW
DestroyCursor
GetFocus
EnableMenuItem
GetKeyState
LoadCursorW
RegisterClassExW
CreateWindowExW
GetWindow
MapWindowPoints
UnregisterClassW
GetIconInfo
CharNextW
LoadBitmapW
LoadImageW
CreateIconFromResource
DrawIconEx
CallWindowProcW
DefWindowProcW
IsWindowEnabled
EnableWindow
SetActiveWindow
EqualRect
SetLayeredWindowAttributes
PostQuitMessage
GetWindowPlacement
SystemParametersInfoA
GetMenuItemInfoW
GetClassNameW
TrackMouseEvent
AnimateWindow
IsZoomed
MonitorFromWindow
GetParent
LoadIconW
GetMessageW
MsgWaitForMultipleObjects
GetSystemMetrics
GetMenuItemCount
CheckMenuItem
GetMenuInfo
SetMenuInfo
TrackPopupMenu
SetCaretPos
GetCaretBlinkTime
CreateCaret
HideCaret
DestroyMenu
IsMenu
DeleteMenu
GetCapture
ReleaseCapture
SetWindowTextW
SetFocus
SetCapture
ScreenToClient
UnionRect
UpdateWindow
IntersectRect
DestroyIcon
IsWindowVisible
IsIconic
GetCursorPos
GetDesktopWindow
MessageBoxW
GetActiveWindow
PostMessageW
SetTimer
KillTimer
DispatchMessageW
TranslateMessage
PeekMessageW
EndPaint
GetSysColor
GetClientRect
BeginPaint
InvalidateRect
GetMonitorInfoW
MonitorFromRect
DrawTextW
SetWindowPos
DestroyWindow
PtInRect
InflateRect
CopyRect
SetRect
OffsetRect
SetCursor
MoveWindow
GetWindowRect
IsRectEmpty
SetWindowLongW
GetWindowLongW
ClientToScreen
SendMessageW
SetForegroundWindow
ShowWindow
FindWindowW
RegisterDeviceNotificationW
IsWindow
UnregisterDeviceNotification
ReleaseDC
GetDC
FillRect
InvertRect
OemToCharBuffW
CreateIconIndirect
InsertMenuW
UpdateLayeredWindow
AppendMenuW
CreatePopupMenu
GetForegroundWindow
SetMenuContextHelpId
GetDlgItem

gdi32

CreateSolidBrush
GetCurrentObject
GetViewportOrgEx
CreateDCW
StretchDIBits
CreateDIBitmap
GetClipRgn
CreatePatternBrush
ExtCreatePen
CreatePen
Pie
Arc
Polyline
SetROP2
GetWorldTransform
SetWorldTransform
Ellipse
RoundRect
GetTextExtentPoint32W
CreateRectRgn
IntersectClipRect
ExcludeClipRect
RestoreDC
CreateRectRgnIndirect
CreateFontIndirectW
ExtSelectClipRgn
GetTextColor
SetTextColor
CreateEllipticRgnIndirect
SetRectRgn
OffsetRgn
GetRgnBox
RectInRegion
PtInRegion
CombineRgn
Rectangle
SetBkMode
BitBlt
SetGraphicsMode
GetDeviceCaps
CreateRoundRectRgn
CreateBitmap
GetDCOrgEx
GetClipBox
EnumFontsW
StretchBlt
SetViewportOrgEx
CreateCompatibleBitmap
GetStockObject
SetBitmapBits
GetObjectW
GetBitmapBits
DeleteObject
DeleteDC
SelectObject
SaveDC
CreateDIBSection
CreateCompatibleDC

comdlg32

GetSaveFileNameW
GetOpenFileNameW

advapi32

RegSetValueExW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW

shell32

SHGetPathFromIDListW
SHGetSpecialFolderLocation
ShellExecuteW
Shell_NotifyIconW

ole32

CreateStreamOnHGlobal
OleInitialize
OleUninitialize
CLSIDFromProgID
CLSIDFromString
OleLockRunning
CreateBindCtx
CoCreateInstance
IIDFromString

oleaut32

VariantChangeType
GetErrorInfo
VariantClear
VariantInit
SetErrorInfo
CreateErrorInfo
SysFreeString
SysAllocString

hid

HidD_GetPreparsedData
HidD_FreePreparsedData
HidD_GetHidGuid
HidD_GetAttributes
HidP_GetCaps

shlwapi

PathIsDirectoryA
PathFileExistsW
PathIsDirectoryW
StrToIntExW

setupapi

SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW

imm32

ImmGetContext
ImmAssociateContext
ImmReleaseContext

msimg32

GradientFill
AlphaBlend

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 359KB - Virtual size: 358KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f4b91901fcc11b86c65613dbb6f19c9

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

gdiplus

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

hid

shlwapi

setupapi

imm32

msimg32

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 359KB - Virtual size: 358KB

.data Size: 51KB - Virtual size: 298KB

.rsrc Size: 1.6MB - Virtual size: 1.6MB

.reloc Size: 104KB - Virtual size: 104KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 359KB - Virtual size: 358KB

.data
Size: 51KB - Virtual size: 298KB

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

.reloc
Size: 104KB - Virtual size: 104KB