Analysis
-
max time kernel
40s -
max time network
35s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
06-08-2024 18:01
Static task
static1
Behavioral task
behavioral1
Sample
CeleryApp.exe
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral2
Sample
CeleryApp.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
CeleryIn.dll
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral4
Sample
CeleryIn.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
CeleryInject.exe
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral6
Sample
CeleryInject.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
General
-
Target
CeleryInject.exe
-
Size
5.0MB
-
MD5
a219324612da6da115423f2118ed7d60
-
SHA1
e25653239651637604e1b6e65fdd719aee2917ec
-
SHA256
b3f9cdae756e9cf1f5b8a823648395ed68d82c6a62d606fd0c6eb9a0be10d51f
-
SHA512
9958ca39f43c7754e6a5586e5cb1a40963a4ec9db898051c327198c31708beb067944d1581355f2bb04e69de62e69de8a6a708213d60d571f74c112b3d489187
-
SSDEEP
49152:HBAPhbBL8IjBDC0J0S27DGjyclWb53PppOPxjfsRdn6dnndn+dnT0Uf:HnIRZJ
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
pid Process 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe 3284 CeleryInject.exe