Overview

overview

7

Static

static

7

2024-09-09...ia.exe

windows7-x64

7

2024-09-09...ia.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-09-09_f30c3391f16240ed8cec693f101b6a9d_mafia

  • Size

    4.1MB

  • Sample

    240909-bwmm6svfpm

  • MD5

    f30c3391f16240ed8cec693f101b6a9d

  • SHA1

    5e0b8283d45862bc8d4b4f210a5eaa86b0593380

  • SHA256

    5e51a067f18db8b76e54fcedadadef5526334f3cc80fcca2a2d09be7e6cd60b1

  • SHA512

    1c4461e140dbb221721e30e40c849ea1198ac896ff1ae033ce69dabf69a51ac853952ee87de0857d99f0b24cfd825f5c1471f9596fdb6ab5b16483389be67b2a

  • SSDEEP

    49152:HKyf6W/O5QZuTtS0rQMYOQ+q8CEtSW5wp3XG1ZI9KFeMf:HgWGWsM0r1QnqSVG160FeK

Score
7/10
discoveryvmprotect

Malware Config

Targets

    • Target

      2024-09-09_f30c3391f16240ed8cec693f101b6a9d_mafia

    • Size

      4.1MB

    • MD5

      f30c3391f16240ed8cec693f101b6a9d

    • SHA1

      5e0b8283d45862bc8d4b4f210a5eaa86b0593380

    • SHA256

      5e51a067f18db8b76e54fcedadadef5526334f3cc80fcca2a2d09be7e6cd60b1

    • SHA512

      1c4461e140dbb221721e30e40c849ea1198ac896ff1ae033ce69dabf69a51ac853952ee87de0857d99f0b24cfd825f5c1471f9596fdb6ab5b16483389be67b2a

    • SSDEEP

      49152:HKyf6W/O5QZuTtS0rQMYOQ+q8CEtSW5wp3XG1ZI9KFeMf:HgWGWsM0r1QnqSVG160FeK

    Score
    7/10
    discoveryvmprotect

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks