CeleryInstaller[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

CeleryInstaller.exe
Size

968KB
MD5

ae59e8e2abe0dcad9bd474d54cfbb2fc
SHA1

93e6094b03766afb0d2e0ced6c9bf0de9a50d091
SHA256

b170dbf99cf91f12dc2f97febf7875a412f9368036f7c5378ec1b1cec9839795
SHA512

2bdb39e3a47ae489f12f22ffa8191d344db30c231e880534a700e2e1b576688b8a3407db254db24a847d1ed5374381bcdc4f8014701815c501323bbde3ccf6d3
SSDEEP

24576:PMNvDb9pAGd+Kjyv2Te1rPEWk5ERNu/9UlGF4xSlvy0x0Z:PMRDb9pAGd+Kjyv2Te1rPEWk5ERI3u44

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
CeleryInstaller.exe

Files

CeleryInstaller.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 929KB - Virtual size: 929KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ