2024-08-12_3a77569cd00d0e24e2fa08284340475a_mafia | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-12_3a77569cd00d0e24e2fa08284340475a_mafia
Size

3.7MB
MD5

3a77569cd00d0e24e2fa08284340475a
SHA1

215a8b80c68f9f9b23d6f8f219c3f1f9df6171d2
SHA256

52e99ebb874bb9efecd4296cafc010bc9d931debc98a637a8e887857fb8e47cf
SHA512

c64449bc3176724de4508c4901e77a1f5e48024f0115160e58009e710b22c108bc4e18ee21b2f3a17f3cc8ac40730c30b5039f0db605fe7cb001299a6b9c8031
SSDEEP

98304:iJvbfaVwdOfbALNQuu6Fwt6mKNFv94QnZqDa+YtQwnLUyoYNwzUKbWo:EbiVQIbAxIi4bDwxLpo6wzUKJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-08-12_3a77569cd00d0e24e2fa08284340475a_mafia

Files

2024-08-12_3a77569cd00d0e24e2fa08284340475a_mafia
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 686KB - Virtual size: 686KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 289KB - Virtual size: 289KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ