Celeste[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Celeste.exe
Size

2.5MB
MD5

795ee5d79ad452b95077535142babc5c
SHA1

59202415157e459303482a9ebbb98fbe0791994b
SHA256

1a1e117add967c0f26ad470a49d4ff442435209265bf1fdda623821d797e80b5
SHA512

aa1f552a58c1736a30d84554f054e74a01d1eb0e8c146830c958231f57952602605001df5eab3d20624254f67b51aad6df3fa33bd256a91bd506fa15c9bc07ff
SSDEEP

24576:jOPgaa2/DB7CiSjuXedRo1VTVb9uTz8vxFUwMd/SdfjYrUKHcR3i4o4Bet4W:7IFqLoQzcxFRMVY/R3i4o4BO

Score

N/A

Malware Config

Signatures

Files

Celeste.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ