Overview

overview

3

Static

static

3

CeleryApp.exe

windows7-x64

1

CeleryApp.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    14s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    20-08-2024 04:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CeleryApp.exe

  • Size

    8.8MB

  • MD5

    74c366b46a85acac6c83e9671e64dda7

  • SHA1

    dc9a7b4cc7511b701401aa86e0106d3495e3a0fe

  • SHA256

    6a25cc6c05e54ca56e8b51d2b2bd8b9a17a96ecb1d1f6d4442d36378dc809ed1

  • SHA512

    e0df64a74c3c9e1c36f5957d346d961cc92741b1803e05d41454dde4371a0e9420f9e79163bed9fe2d8b588b9da6f2faaa08003ca50be37a6425a8320acd15cb

  • SSDEEP

    98304:wEgLIRfyC7egWJ3iJzdjf4fwraOWcD9XdMPABIw/t6KHDicVwzUs7:wEguhegD4fJOWs9XNBZ16M2cuU

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\CeleryApp.exe
    "C:\Users\Admin\AppData\Local\Temp\CeleryApp.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1972
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -u -p 1972 -s 868
      2⤵
        PID:2216

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1972-0-0x000007FEF5893000-0x000007FEF5894000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1972-1-0x0000000001200000-0x0000000001AC6000-memory.dmp

      Filesize

      8.8MB

      Download

    • memory/1972-2-0x000007FEF5890000-0x000007FEF627C000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/1972-3-0x0000000000570000-0x00000000005B0000-memory.dmp

      Filesize

      256KB

      Download

    • memory/1972-4-0x0000000000DA0000-0x0000000000DF0000-memory.dmp

      Filesize

      320KB

      Download

    • memory/1972-5-0x000000001CB30000-0x000000001D44E000-memory.dmp

      Filesize

      9.1MB

      Download

    • memory/1972-7-0x0000000000160000-0x000000000016A000-memory.dmp

      Filesize

      40KB

      Download

    • memory/1972-6-0x0000000000160000-0x000000000016A000-memory.dmp

      Filesize

      40KB

      Download

    • memory/1972-8-0x0000000000160000-0x000000000016E000-memory.dmp

      Filesize

      56KB

      Download

    • memory/1972-9-0x000000001C1F0000-0x000000001C264000-memory.dmp

      Filesize

      464KB

      Download

    • memory/1972-10-0x000007FEF5893000-0x000007FEF5894000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1972-11-0x000007FEF5890000-0x000007FEF627C000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/1972-12-0x0000000000160000-0x000000000016A000-memory.dmp

      Filesize

      40KB

      Download