CeleryApp[.]exe | Triage

Sharing

General

Target

CeleryApp.exe
Size

8.7MB
MD5

199b78ae4949e675da78b3e87ebf91de
SHA1

01cbe6732f202d69ba03b4de5ae426e0a8520508
SHA256

314b54052a5ac99ff7adec59dd16113e7c528640b42d2167a7bc077883108714
SHA512

35f3233d015c85a8502419038130b25cc4ae62886e01c5e2dcfab15c27ab46b2c82035605cdd46a7bbebe0f12e59971e8765d9035a16b48ff2bc79e19d581972
SSDEEP

98304:MsgLIRfyC7egWJ3rJzdDf4fwraOWcD9XdMPABIw/t6KHDicVwzUsy:Msguheg44fJOWs9XNBZ16M2cuU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
CeleryApp.exe

Files

CeleryApp.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8.7MB - Virtual size: 8.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ