2024-07-27_be025176d25e041c3357bab7a7f5b8b9_mafia | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-27_be025176d25e041c3357bab7a7f5b8b9_mafia
Size

712KB
MD5

be025176d25e041c3357bab7a7f5b8b9
SHA1

d08c36b659e3e325c136313373a01095f39bb1e2
SHA256

38d1d33b234f2f5753d3388a8f1fbfe4a7250f87e34dd06aee9dd0ff0684213c
SHA512

796ada849534b419c16132a9d90d6610f748e1c9ea5fd77c8084cdb5b090f5b7d4a986a3fc6449073273a2375cbdecf35de845896b6adc55f68776a7d6850e8c
SSDEEP

12288:FU5rCOTeiDr5TdNUnoAITtP8CC1kti0bhH7NFs/ooqNZdCvq5TJLCvY90D8/LVBN:FUQOJDFTdNUn4qCdti0b9NFs/0NnCvqP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-07-27_be025176d25e041c3357bab7a7f5b8b9_mafia

Files

2024-07-27_be025176d25e041c3357bab7a7f5b8b9_mafia
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 262KB - Virtual size: 283KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ