2dc625e5072ef7ebaddcffd5be6fd73790fdfe7ed691e4df5d3fcf7fcc029a32 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Celeste64.exe
Size

13.2MB
Sample

240309-st945abg2x
MD5

6f445565a4169e268effc04a3aa98a07
SHA1

d97c6fcaa18986bd5f298fac54771088f7f7da89
SHA256

2dc625e5072ef7ebaddcffd5be6fd73790fdfe7ed691e4df5d3fcf7fcc029a32
SHA512

51c8833ba55a393dd27f3ca00e44ce29c2c8702776a8ea036d585ae3df96f01ba8ddd3ff58132b7ac098e24c54b4ebf9eb9a6d178df5971fcdb92a5c0fd0147d
SSDEEP

196608:EBsd3+XNqcBQ9KRIWGmI+/t4RG9VLrgzm:VAXhBQ9KOL++o9VLj

Score

7^/10

Malware Config

Targets

- Target
  
  Celeste64.exe
- Size
  
  13.2MB
- MD5
  
  6f445565a4169e268effc04a3aa98a07
- SHA1
  
  d97c6fcaa18986bd5f298fac54771088f7f7da89
- SHA256
  
  2dc625e5072ef7ebaddcffd5be6fd73790fdfe7ed691e4df5d3fcf7fcc029a32
- SHA512
  
  51c8833ba55a393dd27f3ca00e44ce29c2c8702776a8ea036d585ae3df96f01ba8ddd3ff58132b7ac098e24c54b4ebf9eb9a6d178df5971fcdb92a5c0fd0147d
- SSDEEP
  
  196608:EBsd3+XNqcBQ9KRIWGmI+/t4RG9VLrgzm:VAXhBQ9KOL++o9VLj
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2