2024-07-08_5d900cf48997cb3eedd4b9479bafb076_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-08_5d900cf48997cb3eedd4b9479bafb076_mafia
Size

3.6MB
MD5

5d900cf48997cb3eedd4b9479bafb076
SHA1

9407f39154884401f49a618bd095d3f399d5f78b
SHA256

ed460adc67a6bf175b357ffa69b089c1b6a8f898b2e71c44fbadb290aa4f807c
SHA512

03644452e1d287626e29f5ebfbab73098ddae0dc1cee12acbe5819c9f558282543b6f4dd50e0d495d6ca83d395d3368a9121613b246021bc3974505516f31c30
SSDEEP

98304:RerESBcN4/zO8/lXrOgCMkfEsE8WZm7LTYpkZwrnki/LZIoj9ghi1RebMIg9CbkY:zQ5FwMTslW6wrnkwiojDIg9Cbk/V8o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-07-08_5d900cf48997cb3eedd4b9479bafb076_mafia

Files

2024-07-08_5d900cf48997cb3eedd4b9479bafb076_mafia
.exe windows:5 windows x86 arch:x86

c8dabc7763c21d8706294c55356fc38f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\UniPrintClient5xPlus_Mondo\UPCViewer\Win32\Release\UPCViewer.pdb

Imports

dl100pdfl

PDPageRelease
PDDocGetNumPages
PDPageGetRotate
ASFixedToFloat
PDPrefSetAntialiasLevel
PDDocAcquirePage
PDPageGetCropBox
FloatToASFixed
PDPageDrawContentsWithParams
PDDocSave
ASFileGetFileSysByName
PDDocInsertPages
PDDocCreate
ASTextFromUnicode
ASGetErrorString
PDFLTerm
ASGetDefaultFileSys
PDDocOpenEx
ACGetExceptionErrorCode
PDDocClose
ASAtomFromString
ASFileSysCreatePathName
ACPushExceptionFrame
PDDocPermRequest
ACPopExceptionFrame
PDFLInit
ASFileSysReleasePathName
RestorePlugInFrame

kernel32

GetOEMCP
IsValidCodePage
LCMapStringW
GetTimeZoneInformation
WriteConsoleW
GetDriveTypeW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
SetEnvironmentVariableA
InterlockedCompareExchange
GetCurrentProcess
WideCharToMultiByte
GetProcessHeap
FormatMessageW
GetVersionExW
GetModuleFileNameW
MultiByteToWideChar
GetProcAddress
FindFirstFileW
FreeLibrary
LoadLibraryExW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
FindClose
FindNextFileW
DeleteCriticalSection
LocalFree
GetLongPathNameA
GetModuleFileNameA
FindResourceW
LoadResource
LoadLibraryW
SizeofResource
LockResource
GetACP
GetModuleHandleW
ActivateActCtx
DeactivateActCtx
GetLastError
SetLastError
WaitForSingleObject
SetEvent
Sleep
CreateEventW
WaitForMultipleObjects
CloseHandle
ResumeThread
ResetEvent
GetTempFileNameW
GetConsoleMode
GetConsoleCP
IsDebuggerPresent
UnhandledExceptionFilter
QueryPerformanceCounter
HeapCreate
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
SetUnhandledExceptionFilter
SetStdHandle
HeapSize
HeapQueryInformation
ExitProcess
VirtualQuery
GetSystemInfo
VirtualAlloc
RaiseException
RtlUnwind
HeapReAlloc
HeapAlloc
CreateThread
ExitThread
DecodePointer
CreateMutexW
CreateProcessW
CopyFileW
GetExitCodeProcess
GetCPInfo
GetStringTypeW
GetCurrentDirectoryW
IsProcessorFeaturePresent
EncodePointer
HeapFree
TerminateProcess
GetTempPathW
GetUserDefaultUILanguage
GetSystemTimeAsFileTime
GetFileType
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
SetErrorMode
VirtualProtect
GetNumberFormatW
GetWindowsDirectoryW
GetFileSizeEx
LocalFileTimeToFileTime
GetFileAttributesExW
FileTimeToLocalFileTime
GetVolumeInformationW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
WriteFile
ReadFile
MoveFileW
lstrcmpiW
GetStringTypeExW
SetFilePointer
SearchPathW
GetProfileIntW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
LocalAlloc
FileTimeToSystemTime
GetThreadLocale
lstrlenA
GlobalFlags
GetDiskFreeSpaceW
GetFullPathNameW
GetFileTime
SetFileTime
ReplaceFileW
SystemTimeToFileTime
WritePrivateProfileStringW
GetPrivateProfileIntW
lstrcmpA
GetCurrentThread
GetShortPathNameW
ConvertDefaultLocale
GetSystemDefaultUILanguage
CompareStringA
CreateFileW
GetFileSize
GetFileAttributesW
GlobalReAlloc
GetTickCount
SuspendThread
SetThreadPriority
ReleaseActCtx
CreateActCtxW
GetSystemDirectoryW
lstrcpyW
InterlockedExchange
GlobalFree
GlobalSize
GlobalAlloc
MulDiv
FreeResource
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
InitializeCriticalSectionAndSpinCount
lstrcmpW
GlobalLock
GlobalUnlock
GetCurrentProcessId
GlobalGetAtomNameW
GlobalAddAtomW
lstrlenW
GetLocaleInfoW
GetUserDefaultLCID
GetPrivateProfileStringW
InterlockedDecrement
InterlockedIncrement
DeleteFileW
GetCurrentThreadId

user32

PostThreadMessageW
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
CopyAcceleratorTableW
CharUpperBuffW
FrameRect
GetMenuDefaultItem
UpdateLayeredWindow
EnableScrollBar
RealChildWindowFromPoint
RegisterClipboardFormatW
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
MonitorFromPoint
EmptyClipboard
CloseClipboard
SetClipboardData
CopyImage
OpenClipboard
IsClipboardFormatAvailable
IsMenu
GetMenuItemInfoW
SetMenuDefaultItem
ShowOwnedPopups
DestroyAcceleratorTable
SetCursorPos
CopyIcon
GetMessageW
TranslateMessage
SetLayeredWindowAttributes
EnumDisplayMonitors
SystemParametersInfoW
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
TabbedTextOutW
MapVirtualKeyW
GetKeyNameTextW
SetClassLongW
DrawIconEx
GetSysColorBrush
DrawFocusRect
DrawFrameControl
DrawEdge
LockWindowUpdate
GetUpdateRect
UnionRect
SetRect
CharUpperW
GetAsyncKeyState
NotifyWinEvent
GetCursorPos
MessageBeep
WindowFromPoint
SetCapture
KillTimer
SetTimer
GetSystemMenu
DeleteMenu
MoveWindow
SetWindowTextW
IsDialogMessageW
SetDlgItemTextW
CheckDlgButton
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
SetParent
SetWindowRgn
IsZoomed
GetMenuStringW
WaitMessage
InsertMenuW
RemoveMenu
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
IsChild
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetWindowTextLengthW
GetWindowTextW
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
RedrawWindow
ValidateRect
CreateWindowExW
GetClassInfoExW
RegisterClassW
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
CallWindowProcW
PtInRect
GetClassNameW
UnpackDDElParam
ReuseDDElParam
LoadMenuW
DestroyMenu
WinHelpW
SetFocus
GetActiveWindow
IsWindowEnabled
EqualRect
GetDlgItem
GetDlgCtrlID
GetKeyState
SetCursor
PeekMessageW
GetCapture
ReleaseCapture
LoadAcceleratorsW
SetActiveWindow
IsWindowVisible
IsIconic
InsertMenuItemW
GetSubMenu
GetMenuItemID
GetMenuItemCount
CreatePopupMenu
IntersectRect
OffsetRect
GetMenu
SubtractRect
GetIconInfo
GetDoubleClickTime
UnregisterClassW
GetWindowRgn
MapVirtualKeyExW
IsCharLowerW
CreateMenu
DestroyCursor
DrawIcon
HideCaret
InvertRect
GetLastActivePopup
BringWindowToTop
SetMenu
GetWindow
ShowWindow
IsWindow
TranslateAcceleratorW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
GetNextDlgGroupItem
InvalidateRgn
CharNextW
EnumChildWindows
AppendMenuW
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
ClientToScreen
GetDesktopWindow
SetForegroundWindow
AttachThreadInput
LoadCursorW
FindWindowW
GetClassInfoW
GetForegroundWindow
FlashWindowEx
GetWindowLongW
SetWindowLongW
MessageBoxW
UpdateWindow
DefWindowProcW
GetWindowThreadProcessId
FillRect
LoadImageW
DrawStateW
ScreenToClient
PostMessageW
InvalidateRect
SetWindowPos
IsRectEmpty
DrawTextW
GetDC
ReleaseDC
CopyRect
GetWindowRect
GetParent
GetClientRect
SetRectEmpty
InflateRect
GetSysColor
EnableWindow
LoadIconW
SendMessageW
DestroyIcon
LoadStringW
GetSystemMetrics

gdi32

GetBkColor
GetTextColor
Polyline
Ellipse
Polygon
PatBlt
ExtTextOutW
SaveDC
RestoreDC
SetPolyFillMode
SetROP2
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
GetLayout
SetLayout
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
TextOutW
Escape
CombineRgn
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
SelectPalette
GetObjectType
SetRectRgn
GetMapMode
DPtoLP
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetDIBColorTable
GetDIBits
RealizePalette
StretchBlt
SetPixel
RoundRect
Rectangle
OffsetRgn
GetRgnBox
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
ExtFloodFill
SetPaletteEntries
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
EnumFontFamiliesExW
GetTextFaceW
SetPixelV
CreatePolygonRgn
CreateEllipticRgn
CreateRectRgn
CreateHatchBrush
CreateSolidBrush
CreateRectRgnIndirect
CreateRoundRectRgn
CreatePen
CreateDIBSection
CreateDCW
CopyMetaFileW
GetObjectW
SetBkColor
CreateBitmap
GetDeviceCaps
SetTextColor
DeleteDC
SetBkMode
CreateCompatibleBitmap
BitBlt
CreateFontIndirectW
DeleteObject
CreateCompatibleDC
GetTextExtentPoint32W
GetTextMetricsW
SelectObject
SetViewportOrgEx
GetStockObject

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
SetJobW
ord203
DocumentPropertiesW
EnumPrintersW
ClosePrinter

advapi32

GetFileSecurityW
RegEnumValueW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegSetValueW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
SetFileSecurityW
RegEnumKeyExW

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetSpecialFolderPathW
DragAcceptFiles
DragFinish
DragQueryFileW
ExtractIconW
SHAddToRecentDocs
SHGetMalloc
SHBrowseForFolderW
SHGetDesktopFolder
SHGetFileInfoW
ShellExecuteW
SHAppBarMessage

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathRemoveFileSpecW
PathFindFileNameW
PathStripToRootW
PathFindExtensionW
PathIsUNCW

ole32

OleGetClipboard
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleLockRunning
CoCreateGuid
CreateStreamOnHGlobal
CoInitialize
CoCreateInstance
OleDuplicateData
StringFromCLSID
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CoInitializeEx
CoUninitialize
CoGetMalloc
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
StgCreateDocfileOnILockBytes
CoGetClassObject
CLSIDFromString

oleaut32

SysFreeString
OleCreateFontIndirect
VarBstrFromDate
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SysStringLen
SysAllocString
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen

oledlg

OleUIBusyW

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 382KB - Virtual size: 382KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 182KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c8dabc7763c21d8706294c55356fc38f

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

dl100pdfl

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 382KB - Virtual size: 382KB

.data Size: 32KB - Virtual size: 64KB

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 182KB - Virtual size: 182KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 382KB - Virtual size: 382KB

.data
Size: 32KB - Virtual size: 64KB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 182KB - Virtual size: 182KB