Analysis
-
max time kernel
150s -
max time network
96s -
platform
windows10-2004_x64 -
resource
win10v2004-20240730-en -
resource tags
arch:x64arch:x86image:win10v2004-20240730-enlocale:en-usos:windows10-2004-x64system -
submitted
01-08-2024 20:37
Static task
static1
Behavioral task
behavioral1
Sample
bin/api/CeleryIn.dll
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral2
Sample
bin/api/CeleryIn.dll
Resource
win10v2004-20240730-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
bin/api/CeleryInject.exe
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral4
Sample
bin/api/CeleryInject.exe
Resource
win10v2004-20240730-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
ccapi.dll
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral6
Sample
ccapi.dll
Resource
win10v2004-20240730-en
windows10-2004-x64
General
-
Target
bin/api/CeleryInject.exe
-
Size
5.0MB
-
MD5
86f295d66fc252920340948f3bc1d608
-
SHA1
87278beb6b45a6c2d3ee7a67800d9e778b263dce
-
SHA256
fc815e016cbbfd3f6464d12f7040a32190e9e6706529d5fa4572c0d982d2eb13
-
SHA512
b37ed4e3f9f8c2726aa020ee8dd6983e80c1fb120d7b42d419129cbcd60de26509fb658a6cb5b530b5e3bd491cadd0d511e6690327c8cab4da73c48ffde3d6c8
-
SSDEEP
49152:9BG6vs+/Ue9d9yeoqJi1Rhg86GsDGjyYl2753P+Rs5dnrdnndn+dnA:b1l3J
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
pid Process 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe 2372 CeleryInject.exe