CelestialDesertLauncher[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

CelestialDesertLauncher.exe
Size

2.2MB
MD5

a79a8fe50abe8b451e456e322a8b4938
SHA1

a4af1101331e2a6f38c67929c2744b8a87c332ea
SHA256

3279c64036ce4fe149f1a22fde05e5940b385f0ab0fc4bae5ad5e329f3a2f3d9
SHA512

f7afbb2760fbada7b5b2680604af70f7498a9699da374c886c93d24dfcec515cebf30801ffc80dd712aedb88a868b11c647b467a8c51b17bccc84f6949506f73
SSDEEP

49152:fgIFOt6rnO1N1SUZNMvFQ8ugIDa052fZanWcbc3caUG:fgIosrnOP1SKaQ8ugILVbc3caN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
CelestialDesertLauncher.exe

Files

CelestialDesertLauncher.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\mypc\source\repos\CelestialDesertLauncher\CelestialDesertLauncher\obj\Debug\CelestialDesertLauncher.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ