Static task
static1
Behavioral task
behavioral1
Sample
2025-07-02_d932c1331cefbde2ea8ea91c4c6ba20a_amadey_darkgate_elex_mafia_rhadamanthys_smoke-loader_stop.exe
Resource
win10v2004-20250502-en
General
-
Target
2025-07-02_d932c1331cefbde2ea8ea91c4c6ba20a_amadey_darkgate_elex_mafia_rhadamanthys_smoke-loader_stop
-
Size
4.0MB
-
MD5
d932c1331cefbde2ea8ea91c4c6ba20a
-
SHA1
4d2bf47dd923a41b4787fcd2f067ac332535c6dd
-
SHA256
47143546aba9336c6ad5642589637e9e8889585628deda51dfeffd48b0cdd732
-
SHA512
7beea01345cec7afca3b7fc7601b36d84635c8d6e7552213b5c1495842a52198238e2ae882ec087fcfe620932867375e417bee2bffcddc238a8349296d00b8c5
-
SSDEEP
98304:OnKl2qOb2lP8ssYoJxKkyWsM0r1QnfKHV0Fe7:OCNDtojKL2Kqo7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2025-07-02_d932c1331cefbde2ea8ea91c4c6ba20a_amadey_darkgate_elex_mafia_rhadamanthys_smoke-loader_stop
Files
-
2025-07-02_d932c1331cefbde2ea8ea91c4c6ba20a_amadey_darkgate_elex_mafia_rhadamanthys_smoke-loader_stop.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 142KB - Virtual size: 143KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 62KB - Virtual size: 63KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 25KB - Virtual size: 35KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 132KB - Virtual size: 135KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ