Resubmissions

01-08-2024 08:14

240801-j48vda1blm 10

29-07-2024 20:18

240729-y285paycjr 10

29-07-2024 20:11

240729-yyr21ayanl 10

General

  • Target

    Celery.exe

  • Size

    56.9MB

  • MD5

    c6226e46b67143c0daa5fb37ddaad7df

  • SHA1

    ef800ca848512dff3c2af114b589a43ad5027d5e

  • SHA256

    395532c65dc8a2ecf47db85df7d362ba6170d39bbb98e2f844a3d3be25d32e7b

  • SHA512

    e482cefca0fcd0905492f1275390c64e72aa3dd595cee248e56e6b3521a8e65dab4eb39cc035c4fb5384d6665f6337a1d1633d75988690c38f02492c9309c364

  • SSDEEP

    1572864:LvxZQglY7vaSk8IpG7V+VPhqYdfCE70lgvWjYDxo:LvxZx+eSkB05awcfAev+iO

Score
10/10

Malware Config

Signatures

  • Detect Pysilon 1 IoCs
  • Pysilon family
  • Detects Pyinstaller 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Celery.exe
    .exe windows:6 windows x64 arch:x64

    456e8615ad4320c9f54e50319a19df9c


    Headers

    Imports

    Sections

  • discord_token_grabber.pyc
  • get_cookies.pyc
  • misc.pyc
  • passwords_grabber.pyc
  • source_prepared.pyc