General

  • Target

    [CRACKED BY L1nc0In] Celestial.rar

  • Size

    13.1MB

  • Sample

    240617-mdsbgswflg

  • MD5

    636c1ebadd92b21114fcb17c5c640032

  • SHA1

    22eb7705a181bd1a0b1291c1304470e31761774d

  • SHA256

    ef63fd911b2fae0822c9c35e513b9660890dd09e131add652856f8d5e3586162

  • SHA512

    f9490f7354b025a8cba4d198e624beb5ec4ee5ce46c75ffca34fcd03b368beddacd9492ed2dfefdb0eb39d693092ccec56fbff3ffd652d3a58dcb68c6b076d04

  • SSDEEP

    196608:LwKLUXdrrtFo6FH4tLKQEhkGTktUr8cNCZiX54kSIRwR8H6G5/Qj3d3GxPaP7QMs:Z+dfF/TNdNCZiJ3RcZ423d2g0X

Score
7/10

Malware Config

Targets

    • Target

      [CRACKED BY L1nc0In] Celestial.rar

    • Size

      13.1MB

    • MD5

      636c1ebadd92b21114fcb17c5c640032

    • SHA1

      22eb7705a181bd1a0b1291c1304470e31761774d

    • SHA256

      ef63fd911b2fae0822c9c35e513b9660890dd09e131add652856f8d5e3586162

    • SHA512

      f9490f7354b025a8cba4d198e624beb5ec4ee5ce46c75ffca34fcd03b368beddacd9492ed2dfefdb0eb39d693092ccec56fbff3ffd652d3a58dcb68c6b076d04

    • SSDEEP

      196608:LwKLUXdrrtFo6FH4tLKQEhkGTktUr8cNCZiX54kSIRwR8H6G5/Qj3d3GxPaP7QMs:Z+dfF/TNdNCZiJ3RcZ423d2g0X

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks