2024-09-12_437eb9d01b29888b4ec74af06593dc81_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-12_437eb9d01b29888b4ec74af06593dc81_mafia
Size

197KB
MD5

437eb9d01b29888b4ec74af06593dc81
SHA1

54308a5e38cda910257f4c8ba609da9dc2d5de8b
SHA256

2eb3798048d774400c4b43da656083e0fb7321020f6f7c5c5356d249817f92f7
SHA512

f2fa671dd14afe180184434e4ddbe4e6cd10ab8f962810b252b3a62251ccefcd07baecbd7a681c75cbe739f865170d7b751e7021c9d52d4db4151e8da4d8d98d
SSDEEP

3072:BHWjBr1B+Nq5rfS0CuflqkZlgH9VeBsZiYK+PoMcG:BwBr1ANsrfau9qkZOH9s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-09-12_437eb9d01b29888b4ec74af06593dc81_mafia

Files

2024-09-12_437eb9d01b29888b4ec74af06593dc81_mafia
.exe windows:5 windows x86 arch:x86

e72fdc8054cca9e70cb9b8cffc35aa3a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
SetLastError
GetLastError
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
GetProcAddress
GetModuleHandleA
InterlockedIncrement
InterlockedDecrement
lstrlenA
lstrcmpiA
IsDBCSLeadByte
FreeLibrary
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
GetStdHandle
IsValidLocale
EnumSystemLocalesA
GetCurrentProcess
GetUserDefaultLCID
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
GetFileType
SetHandleCount
ExitProcess
IsValidCodePage
GetOEMCP
GetACP
HeapCreate
GetModuleFileNameW
HeapSize
HeapReAlloc
TlsFree
TlsSetValue
FlushInstructionCache
LeaveCriticalSection
EnterCriticalSection
RaiseException
ReadFile
CreateFileA
GetCurrentDirectoryA
WriteFile
CloseHandle
TlsGetValue
CreateFileW
SetStdHandle
WriteConsoleW
LoadLibraryW
TlsAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
GetModuleFileNameA
GetLocaleInfoA
InterlockedCompareExchange
InterlockedPushEntrySList
HeapFree
GetProcessHeap
HeapAlloc
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
InterlockedPopEntrySList
Sleep
InterlockedExchange
InitializeCriticalSection
EncodePointer
DecodePointer
GetLocaleInfoW
GetStringTypeW
RtlUnwind
VirtualProtect
GetModuleHandleW
GetSystemInfo
VirtualQuery
GetCommandLineA
HeapSetInformation
GetStartupInfoW
LCMapStringW
GetCPInfo
TerminateProcess
UnhandledExceptionFilter

user32

DefWindowProcA
CreateDialogParamA
CharNextA
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
ShowWindow
GetActiveWindow
GetSystemMetrics
LoadImageA
UnregisterClassA
PostQuitMessage
IsDialogMessageA
SendMessageA
MessageBoxA
GetDlgItemTextA
SetWindowLongA
DestroyWindow
GetWindow
GetWindowRect
SystemParametersInfoA
GetClientRect
MapWindowPoints
SetWindowPos
GetParent
GetWindowLongA
EndDialog
DialogBoxParamA

advapi32

RegQueryInfoKeyW
RegCreateKeyExA
RegEnumKeyExA
RegSetValueExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyExA

ole32

CoInitialize
CoUninitialize
CoTaskMemFree
CoCreateInstance
CoTaskMemRealloc
CoTaskMemAlloc

oleaut32

VarUI4FromStr

comctl32

InitCommonControlsEx

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e72fdc8054cca9e70cb9b8cffc35aa3a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

comctl32

Sections

.text Size: 111KB - Virtual size: 111KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 7KB - Virtual size: 16KB

.rsrc Size: 37KB - Virtual size: 37KB

.reloc Size: 15KB - Virtual size: 15KB

.text
Size: 111KB - Virtual size: 111KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 7KB - Virtual size: 16KB

.rsrc
Size: 37KB - Virtual size: 37KB

.reloc
Size: 15KB - Virtual size: 15KB