Overview
overview
3Static
static
3Tutorial Video.url
windows7-x64
1Tutorial Video.url
windows10-2004-x64
1api/CeleryIn.dll
windows7-x64
1api/CeleryIn.dll
windows10-2004-x64
1api/CeleryInject.exe
windows7-x64
1api/CeleryInject.exe
windows10-2004-x64
ccapi.dll
windows7-x64
1ccapi.dll
windows10-2004-x64
1darkModz YouTube.url
windows7-x64
1darkModz YouTube.url
windows10-2004-x64
1Analysis
-
max time kernel
31s -
max time network
38s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
10-08-2024 07:16
Static task
static1
Behavioral task
behavioral1
Sample
Tutorial Video.url
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral2
Sample
Tutorial Video.url
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
api/CeleryIn.dll
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral4
Sample
api/CeleryIn.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
api/CeleryInject.exe
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral6
Sample
api/CeleryInject.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
ccapi.dll
Resource
win7-20240729-en
windows7-x64
Behavioral task
behavioral8
Sample
ccapi.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
darkModz YouTube.url
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral10
Sample
darkModz YouTube.url
Resource
win10v2004-20240802-en
windows10-2004-x64
Errors
General
-
Target
api/CeleryInject.exe
-
Size
4.8MB
-
MD5
ed10dc5297ce06b1f2ac9be338813439
-
SHA1
e6423d50a5dab548b2d77799abfca9d6db0f83bd
-
SHA256
e97562123b7c059aec0e31a3bdc402f13e41e9f0ab38857b1adf948b350a8a94
-
SHA512
bc061587e29eca586c1f4a70cd4d7ee73b83b13642f763609af36cea6297917ac86bfca861fdc08113fd3107793ed9f93e7b9bdc8408b34cb1a0751482809a84
-
SSDEEP
49152:nJm4iNvgKzFKHLT48y3vPqAmDGjyAlqP53Ps9Ssudn1dnndn+dnMHJtk:JGI5HWeK
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
pid Process 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe 896 CeleryInject.exe