Overview

overview

3

Static

static

3

CeleryApp.exe

windows7-x64

1

CeleryApp.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    13-07-2024 15:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CeleryApp.exe

  • Size

    8.8MB

  • MD5

    0814c55a8b98ee90a58ea92caa73ecc1

  • SHA1

    d8554a33c88206ce4d5c214e7aceb7ab01043982

  • SHA256

    b623febba792d915a504d3e62da48fde7b4e74d5bc08bfaeb82c422577882ed2

  • SHA512

    4234bf8306438a947a9266a0d7f52a7f7b6102db81fb747065ce01746b503885471ee8f37bda4da4ad9ddb850c4607558b5b56a4c39fe4baa54d595946698082

  • SSDEEP

    98304:3dgLIRfyC7egWJ3iJzdjf4fwraOWcD9XdMPABIw/t6KHDicVwzUs7/:3dguhegD4fJOWs9XNBZ16M2cuU

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\CeleryApp.exe
    "C:\Users\Admin\AppData\Local\Temp\CeleryApp.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2456
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -u -p 2456 -s 864
      2⤵
        PID:2276

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2456-0-0x000007FEF5E03000-0x000007FEF5E04000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2456-1-0x0000000000E50000-0x0000000001718000-memory.dmp

      Filesize

      8.8MB

      Download

    • memory/2456-2-0x000007FEF5E00000-0x000007FEF67EC000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/2456-3-0x0000000000900000-0x0000000000940000-memory.dmp

      Filesize

      256KB

      Download

    • memory/2456-4-0x0000000000DA0000-0x0000000000DF0000-memory.dmp

      Filesize

      320KB

      Download

    • memory/2456-5-0x000000001CC70000-0x000000001D58E000-memory.dmp

      Filesize

      9.1MB

      Download

    • memory/2456-7-0x00000000005E0000-0x00000000005EA000-memory.dmp

      Filesize

      40KB

      Download

    • memory/2456-6-0x00000000005E0000-0x00000000005EA000-memory.dmp

      Filesize

      40KB

      Download

    • memory/2456-8-0x00000000005E0000-0x00000000005EE000-memory.dmp

      Filesize

      56KB

      Download

    • memory/2456-9-0x0000000002D90000-0x0000000002E04000-memory.dmp

      Filesize

      464KB

      Download

    • memory/2456-10-0x000007FEF5E03000-0x000007FEF5E04000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2456-11-0x000007FEF5E00000-0x000007FEF67EC000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/2456-12-0x00000000005E0000-0x00000000005EA000-memory.dmp

      Filesize

      40KB

      Download