a4249f3dff54bd6632602c695887f0262bdef78a7de8bdb32994cc026d58b98b

Sharing

Copy URL

Twitter E-mail

General

Target

a4249f3dff54bd6632602c695887f0262bdef78a7de8bdb32994cc026d58b98b
Size

14.7MB
MD5

3fe7aba18cf7bbca292270a8f773d939
SHA1

a734c51c1041e30282557fdb754d36b259f2cb7d
SHA256

a4249f3dff54bd6632602c695887f0262bdef78a7de8bdb32994cc026d58b98b
SHA512

9eea7b238a442bd0e851b4fcd349cc2a906634642a0f1a737b70c42a83a131580c20fdc108779548c40208458d12d4c210de7dc81f3111fc863692bbd53b48fa
SSDEEP

196608:HCQ6vRpyZ7Gs4b9fmP02BqBp2v5nZdKk7TjcnneP3HQ7s8fi+xE+czEjie:HCQ6vRpy5Z4ZmPmBAXLLc03Q48fxSoj9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a4249f3dff54bd6632602c695887f0262bdef78a7de8bdb32994cc026d58b98b

Files

a4249f3dff54bd6632602c695887f0262bdef78a7de8bdb32994cc026d58b98b
.exe windows:6 windows x64

6bcd57e30391c87aeab3109a55d6f214

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

chimeralandbase

ord1

Exports

Exports

?ReportEvent@Analytics@intl@@SAXAEBV?$basic_string@D@intl_tp_stl_c@@AEAV?$map@V?$basic_string@D@intl_tp_stl_c@@V12@@4@00@Z
?SendMessage@Friend@intl@@SAXAEBVFriendReqInfo@2@AEBV?$basic_string@D@intl_tp_stl_c@@@Z
luaopen_socket_core

Sections

.ace
Size: 6.0MB - Virtual size: 21.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ace
Size: 6.0MB - Virtual size: 6.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ace
Size: 267KB - Virtual size: 39.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ace
Size: 394KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ace
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ace
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ace
Size: 24KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ace
Size: 285KB - Virtual size: 285KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ace
Size: 11KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.tvm0
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ace
Size: 236KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6bcd57e30391c87aeab3109a55d6f214

Headers

DLL Characteristics

File Characteristics

Imports

chimeralandbase

Exports

Exports

Sections

.ace Size: 6.0MB - Virtual size: 21.4MB

.ace Size: 6.0MB - Virtual size: 6.0MB

.ace Size: 267KB - Virtual size: 39.3MB

.ace Size: 394KB - Virtual size: 1.1MB

.ace Size: 512B - Virtual size: 84B

.ace Size: 65KB - Virtual size: 64KB

.ace Size: 24KB - Virtual size: 35KB

.ace Size: 285KB - Virtual size: 285KB

.ace Size: 11KB - Virtual size: 76KB

.tvm0 Size: 1.5MB - Virtual size: 1.5MB

.ace Size: 236KB - Virtual size: 236KB

.ace
Size: 6.0MB - Virtual size: 21.4MB

.ace
Size: 6.0MB - Virtual size: 6.0MB

.ace
Size: 267KB - Virtual size: 39.3MB

.ace
Size: 394KB - Virtual size: 1.1MB

.ace
Size: 512B - Virtual size: 84B

.ace
Size: 65KB - Virtual size: 64KB

.ace
Size: 24KB - Virtual size: 35KB

.ace
Size: 285KB - Virtual size: 285KB

.ace
Size: 11KB - Virtual size: 76KB

.tvm0
Size: 1.5MB - Virtual size: 1.5MB

.ace
Size: 236KB - Virtual size: 236KB