Analysis
-
max time kernel
134s -
max time network
103s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
26/05/2024, 10:42
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
Celestial Build/Celestial.dll
Resource
win10v2004-20240508-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
Celestial Build/Celestial_inj.exe
Resource
win10v2004-20240508-en
0 signatures
150 seconds
General
-
Target
Celestial Build/Celestial.dll
-
Size
950KB
-
MD5
4e764d6a1c27f431d1da5f28059b7935
-
SHA1
9dd33479977b479b376b4a193b0eefac59d9d268
-
SHA256
bf53d266f48796efd0a4521dcfa0aef67e32b91e6ea537a615746901040e29ca
-
SHA512
a0dcdeafd075d20d2b54d4a244bd46bb389b5376b0f599b33f7de80487e9d8103c35ec16e3adb943728a384deaa67c7281af7ff4dbb60cbbd733913ec9aad0bc
-
SSDEEP
12288:1zS8xHPH9uokj7LbZDnSAFB87duYOza7kK0yniM1OSelDpfEWmgnfN6u2xt:ZS8xP9Pc7BDVnYTkK0yn81GZMNit
Score
1/10
Malware Config
Signatures
-
Suspicious use of FindShellTrayWindow 1 IoCs
pid Process 3440 rundll32.exe