2024-07-25_626652df1a1cfaea835acc7fe55b3356_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-25_626652df1a1cfaea835acc7fe55b3356_mafia
Size

563KB
MD5

626652df1a1cfaea835acc7fe55b3356
SHA1

402f33e0fd3aabd87d89f5c28fa38056f5ad10e3
SHA256

14004ce8e740aede431897f3afb3a2827aecaee97fc750063fe7470218f79ed2
SHA512

b2f77cb7f5d9cd9d8fea0034067b0386dac12ffdf7f913ead50befacc8f86cac6c755ebb5c13e880481d48edceac0f485d62e25bd61d70e4e12ee3258819e281
SSDEEP

12288:ipRHzrqDmDsQjkdhId9DhRddeTd9iXER9rIGeg6csn8zRXw:Ijkd+dQTu0QGet8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-07-25_626652df1a1cfaea835acc7fe55b3356_mafia

Files

2024-07-25_626652df1a1cfaea835acc7fe55b3356_mafia
.exe windows:5 windows x86 arch:x86

448c8b4904495278a1b2638ea1e09a38

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
GlobalLock
GlobalAlloc
GlobalUnlock
GetUserDefaultLCID
GetCurrentDirectoryA
Sleep
GetDiskFreeSpaceExA
FindNextFileA
FindClose
QueryPerformanceFrequency
CompareStringW
SetFileAttributesA
FindFirstFileA
FileTimeToSystemTime
GlobalFree
GetFileAttributesA
HeapSize
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
CreateFileW
LoadLibraryW
HeapReAlloc
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStringTypeW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetLocaleInfoW
FlushFileBuffers
GetModuleFileNameW
HeapCreate
IsProcessorFeaturePresent
WriteConsoleW
ExitProcess
GetProcessHeap
SetEndOfFile
RtlUnwind
SetStdHandle
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetStdHandle
SetHandleCount
LeaveCriticalSection
GetLastError
DeleteFileA
MoveFileA
MultiByteToWideChar
ReadFile
CreateDirectoryA
RemoveDirectoryA
SetEnvironmentVariableA
SetCurrentDirectoryA
CloseHandle
GetFileType
CreateFileA
SetFilePointer
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
HeapFree
HeapAlloc
InterlockedDecrement
InterlockedIncrement
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
DecodePointer
TlsFree
GetModuleHandleW
SetLastError
GetCurrentThreadId
GetProcAddress
LCMapStringW
EnterCriticalSection
GetTimeZoneInformation

user32

SetClipboardData
OpenClipboard
GetActiveWindow
EmptyClipboard
EndPaint
CloseClipboard
GetClipboardData
MoveWindow
LoadCursorA
UpdateWindow
GetSystemMetrics
AdjustWindowRectEx
DispatchMessageA
DefWindowProcA
ReleaseDC
PeekMessageA
CreateWindowExA
SetCursorPos
InvalidateRect
SetWindowLongA
GetAsyncKeyState
GetForegroundWindow
TranslateMessage
GetDC
BeginPaint
SendMessageA
GetClientRect
IsZoomed
IsIconic
PostQuitMessage
RegisterClassExA
GetWindowRect
ScreenToClient
DestroyWindow

gdi32

DeleteObject
SelectObject
CreateFontW
SwapBuffers
GetStockObject
SetPixelFormat
ChoosePixelFormat
CreateFontA

winmm

midiOutUnprepareHeader
midiOutPrepareHeader
midiOutReset
midiOutOpen
timeKillEvent
midiOutShortMsg
midiOutClose
midiOutLongMsg
timeSetEvent

opengl32

wglDeleteContext
wglMakeCurrent
wglCreateContext
wglGetProcAddress
glEnable
glDrawPixels
glPushClientAttrib
glPushAttrib
glReadBuffer
glDrawBuffer
glColor3d
glShadeModel
glPopAttrib
glFinish
glPopClientAttrib
glClearColor
glClear
glAlphaFunc
wglUseFontBitmapsA
glCallList
glGenLists
glViewport
glRasterPos2d
glPixelZoom
wglUseFontBitmapsW
glReadPixels
wglGetCurrentDC
glDisable
glPixelStorei
glColor3ub
glRectd
glDeleteLists
glGetIntegerv

shell32

DragFinish
DragAcceptFiles
DragQueryFileA

Sections

.text
Size: 344KB - Virtual size: 344KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 21.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

448c8b4904495278a1b2638ea1e09a38

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winmm

opengl32

shell32

Sections

.text Size: 344KB - Virtual size: 344KB

.rdata Size: 120KB - Virtual size: 120KB

.data Size: 14KB - Virtual size: 21.5MB

.reloc Size: 83KB - Virtual size: 82KB

.text
Size: 344KB - Virtual size: 344KB

.rdata
Size: 120KB - Virtual size: 120KB

.data
Size: 14KB - Virtual size: 21.5MB

.reloc
Size: 83KB - Virtual size: 82KB