63b0220451a85135de4bda78b6b00ba68bcf568243ac79069b7eb288e6875a8a

Sharing

Copy URL

Twitter E-mail

General

Target

CeleryLatest.zip
Size

1.8MB
Sample

240901-2qz97atfqp
MD5

2bba1e58d009b3175b5842deb2fd168e
SHA1

204b1bb48818678bad72021e54a75756d8e757d4
SHA256

63b0220451a85135de4bda78b6b00ba68bcf568243ac79069b7eb288e6875a8a
SHA512

f68ff1422e7bb6af2efc304dc8254ab366e119e1ac9ea4a6e6858cccab578ab5c9eb42ec07d08378caab6106d55bb768d9e5927a312fb49c76b53a9f123b7caa
SSDEEP

24576:hYuRoLABTQpO5c0HDh0Rr8Dg0eZtxMBux+G4g5nL2UKG+soxaMR/3dO:6TkTX51HV0Rr8UFdx5LQGatRFO

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  Costura.dll
- Size
  
  4KB
- MD5
  
  501981c7fc457d59238eb99780efb615
- SHA1
  
  f1f25c01f6acf33bdd62c4f82d3ef078e76f0906
- SHA256
  
  41bb464ac7c0d192641077e44a59d7d89860c3c620a59961f2fc4a4be47deae3
- SHA512
  
  5921d0662add6c8aa075106878cc56335ccbf059d8bc7f359fe9e02a52ec657c3e5df1c718929564c09f205e4bd299b086f3e7424141f5e55ed0d756f65ee1e8
- SSDEEP
  
  48:6F+lni2qJfjVRPGwzCo4MhTN0KDdilETrVsH4/QWk1qyFVT2IbG:7g7KedGEiYIWM2
Score

1^/10
behavioral1 behavioral2
- Target
  
  Dragablz.dll
- Size
  
  233KB
- MD5
  
  5a9583a7bed76b2e94091f9b74716f68
- SHA1
  
  60552dc4ed629b32a7c0e7b31406a21829bdc38e
- SHA256
  
  6c5724efe19f5945143626a8270c9c3a188d4886eeaca083c57c742a985c7338
- SHA512
  
  8ab70fd60a27a80e43a270a401e8772833ad0a11ade1ea13483b37b1a02dbb70679bbe200fceca632ee1ba8df66a95a51a2fe65671eb3ae596682d3e1ee1c0d5
- SSDEEP
  
  6144:fTuK/5J3BPYcKHJv8ahfgfkMMafGfCfDf2fE:fKKhP+Dhfgf7fGfCfDf2f
Score

1^/10
behavioral3 behavioral4
- Target
  
  MaterialDesignColors.dll
- Size
  
  295KB
- MD5
  
  d2207fccbdd6caa91c43776559ce401f
- SHA1
  
  4f78f282a238b21ad1f995f154d624865d08a38a
- SHA256
  
  1966082c8efa5ecddac7fd8b3e3b86a63599602d18bdff17e7c366d49603aaf0
- SHA512
  
  d4984e3a6d82e7ebe11c2f7ea07092e60ef1396849921c6c0a463dd9b38836c5f6799e79f932bddc62b89d7a9896b5e5ba931c3c8cbfedff51076a41796a8c0e
- SSDEEP
  
  1536:1r1In+fq1fDfDemxD0EsXpGX0EOAyzU7fKoVxbzQXT:B1WB1PerAjOAL7fKoVxb2T
Score

1^/10
behavioral5 behavioral6
- Target
  
  MaterialDesignExtensions.dll
- Size
  
  349KB
- MD5
  
  6da7ae89f1eac96f143dc5200031d8b8
- SHA1
  
  d9dc3936bc9a288a727cb2295c3d05899adcc9c8
- SHA256
  
  c5b93560fa74b9a05959aae5116da59495d36782d2e17e45f0efcc06ad36ed6a
- SHA512
  
  3929f7092a5acb5ae3333e7e0a9ac2a403b78c8c8ad35a17ece25e6688a61a0f7e4b701691b02ad2941c6e15d2262c6f8ae76413af93dc92aa422e1738147e94
- SSDEEP
  
  6144:OM2EyV6zxDNFOzaFkpXeRk7ecDfE0MHOZB0zSvo1UvEGK262:nGVcxHOzxpuRk7emfE0MHOZB0zSvo1UJ
Score

1^/10
behavioral7 behavioral8
- Target
  
  Microsoft.Web.WebView2.Core.dll
- Size
  
  445KB
- MD5
  
  c4b4a5f4f28d47239eb4e37cb3cc8046
- SHA1
  
  ed86941cf065f91758d536d8e13cc2542cc38922
- SHA256
  
  c2441011ec290b3408391f32072379f677ab3fa4507c4304167cd82fad6593c1
- SHA512
  
  440ee33d5a830d9c59d96367f2a43d4a4113f6fe0924a691e682a2e9251a8615e52177dcb9af225dba538a8a3893ac85be79e9c1aa687034e3da6c95191dc645
- SSDEEP
  
  12288:EB7Md7DkbrB3kPo+iKvRFNLe1+imQ9pRFZNIEJdIElxPrEIvLcglxMwCepM1STUH:EeFP7
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  Microsoft.Web.WebView2.WinForms.dll
- Size
  
  37KB
- MD5
  
  e6f424ee6036ee7d58283780b705be8c
- SHA1
  
  c17fc397711fb2e0c400007620c76e70c956dd9c
- SHA256
  
  c9eeff2dd13109f41447a92763d31aaa07369c58a570c18bbb851824a77da98a
- SHA512
  
  1d255265115a4a2238a21e3ade35101babcbf9d5de58521365666b9564681119c4b7f20ed6a6c16fb6120ab19106fa40f25421da938b7fee7b8a5e7758f2c22f
- SSDEEP
  
  768:ejIHFTA42CL9tcZDgcEST3p4Jjrjh2jJFSgyauYv1JKia5/Zi/WGQKVu6bL7RSOX:AIS3C5tcZDgcEST3p4JjrjaJFSgyau0H
Score

1^/10
behavioral11 behavioral12
- Target
  
  Microsoft.Web.WebView2.Wpf.dll
- Size
  
  43KB
- MD5
  
  0241e0a42b292e0c9b585470c613ec78
- SHA1
  
  74e4ab7e37bff177a394617923baddfcf087c0e1
- SHA256
  
  15bcd610a80632ef59d911a8447b11127cdeafbf147c844f1b740735efdf338a
- SHA512
  
  bd083301c6f93a1852c76686797919787f439c65ea11d430701257fa4d3791a4eff892b6ceea1c534d832bfbc0b0ecca3f671e3a9c50f34089f919e3756882f0
- SSDEEP
  
  768:k2TI5VoCjJ4Jd7U2zkQ+Z8cDP/ryEH0yBy4JjrD1h2jVh3URGvkz7FKKa5/Bi/xm:VE5tjJ4Y2zf+Z8cDP/ryEH0yBy4JjrDC
Score

1^/10
behavioral13 behavioral14
- Target
  
  Microsoft.Xaml.Behaviors.dll
- Size
  
  141KB
- MD5
  
  ec5a1abee150abe698689211b07cd1ec
- SHA1
  
  affc3cb47da8fe76986d271cdc3e7ea345cc04e5
- SHA256
  
  b864da9d88414877cea9b1a016146265a5fb9d0e12f4dbb1dccc0cc998119a54
- SHA512
  
  a2b55b4ffc3f11546ed8d3457e98b986c089e25229bd687da35d45d63e4860722e8b13826d3a3daa1be843cf3a4ae3da4cf9b6fdcb5d1a4948648537e683789f
- SSDEEP
  
  3072:UAyazS96IT0O6gAf+LwCMe1u051dXcr9/soMEs5r/j9:tyhYIT0O65cwCMyE
Score

1^/10
behavioral15 behavioral16
- Target
  
  System.Diagnostics.DiagnosticSource.dll
- Size
  
  34KB
- MD5
  
  8d9df432109f1cfdd86723b5f171e3d7
- SHA1
  
  85dc92edd4b0049ed9049e075c4def8a3d64e43b
- SHA256
  
  d22133818a30313e0becf010d78a556a56b34ea361dbd33588c9817631fed540
- SHA512
  
  5c83303934eecfa61c43a071d29c98e5804d37a5dc7f7b035772d6a168b0c5e65dfabef20b46214e65493c4bda44831cafee83615498fbe9e718c884f4650edf
- SSDEEP
  
  384:iQobG82oiaPaf/gn5LQ0+0zdQUv2CtyW8fiFISWbW9pWJbWivT1Nq0GftpBjAvnC:nA299fI5dxzL2CC11vimvnEBBNFT
Score

1^/10
behavioral17 behavioral18
- Target
  
  bin/Monaco/index.html
- Size
  
  13KB
- MD5
  
  8132342ce4b039603cbb3b1a32ab859b
- SHA1
  
  66c46050a6e5b08758c00455ae26a6c66e94ce4c
- SHA256
  
  3818906ed429acd27aabad7ec8771893d60658ea31b8d0c92418b96de8ee94e6
- SHA512
  
  44d93118187e703af1fc1627de7e97c39072e666c9086b1b4c00a7eadce1913c84dc97e8f80e2b514154ef66b23baddbfd71a2faa250735ddf4d2bc12709cef4
- SSDEEP
  
  192:oL3bXRggAbYm/9mv2Oxr09VpDwFgBsK7u24FzTkcmc/VT+9taAc4dReigXN:2RggAbYmbD9V9wFgBs+SFN
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  bin/Monaco/vs/base/worker/workerMain.js
- Size
  
  174KB
- MD5
  
  9ce9e46b6d66d8b2dbcabba577cad2ed
- SHA1
  
  397b0e9e7b2bee37a8444e84bb9788a0bdcb023e
- SHA256
  
  19b566655d73370a820a7d6fffe7af03dba3af4997016c0983be5bd188603ec2
- SHA512
  
  f322ea669fa81397066edef062721ae3dd515b3d61c4ad7bef0db0eb3a53f056da298fd4f761bd3e5d613e6f5803a7c35ed056085ac3b97e06c7bfd47fffad49
- SSDEEP
  
  1536:mi5eQeCEwCP1m9JXKmA1xKzyOQJf9X2K7eM9bWXsUK5QSkSoIMQwr+ZjtQYyeTMO:mHTdkKmA1yyOQJl2K7ns6dZ/RVaNzY
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  bin/Monaco/vs/basic-languages/lua/autocompletes.js
- Size
  
  2KB
- MD5
  
  eb6fde8de905af68c855a2506c8a8204
- SHA1
  
  32b172578f398151be79f78bdeb15eeff4a83020
- SHA256
  
  1fbe4337327ef99c9caba74678cfff28652606fd667dbca34f12e809738010d9
- SHA512
  
  6e95ecdfbabf20c2e717006ea00fa92d79e577cf262460cef7f3db7bb4fa87585bed99b6a1bd1d865c5e5184044b0244aa0823580c9444b1f2ff013057f54235
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  bin/Monaco/vs/basic-languages/lua/autocompletes/base.js
- Size
  
  521B
- MD5
  
  29e50887a6f1c445e0f63bed73eefb83
- SHA1
  
  b8e006b9ad14bb6012497e164d9a4f926e2d568d
- SHA256
  
  9a6c60193eb2dda7c2682bf9c7ff7e01b0f6000d70881583f0055782c8b2c619
- SHA512
  
  16cc7fd8b5641d347a6a9e8542a6ab29d71a432dfb2f72dae05b21b274d92208ec7c5a9ad1ba313658f3a68aebd9edc3d0bcbf07a03d0f16eae95568f175dbf4
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  bin/Monaco/vs/basic-languages/lua/autocompletes/classes.js
- Size
  
  33KB
- MD5
  
  fabe9b3ec7774eb374f18709ab41c8c0
- SHA1
  
  de6c19413ef008000357bccea90faf0d23ccf605
- SHA256
  
  75418233aff9a1401f6c467f8ca20999803436bc1ebb463123d1fb94dcff1f38
- SHA512
  
  d7b4a9dbfab0ec55e27b2ded86066b37ebea7d50b3b6b28f44c996f8280463176f1107c6bf15a52fb700f88ac3e0e7b87fb8a50664da9b31fc0e89a38d2055e9
- SSDEEP
  
  768:EDVdzN+yYumzw/Wx5nYCH0e2zBsGMPv3lHhj4MyjKG9jn9/j7NFvHR0hT/YEkd3M:H6/W3YCUpqUDW
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  bin/Monaco/vs/basic-languages/lua/autocompletes/classes/DataModel.js
- Size
  
  11KB
- MD5
  
  287b74a1ea581434cca8f9009f1489f2
- SHA1
  
  877544929146171e416cc8fb33b0e7e49845df3d
- SHA256
  
  ce2e06aaa97355c4f68a0793c41d4e068b3e1a225f5376d9dd3f4016e0441c7a
- SHA512
  
  4cd7b324ccde3fbca94ab948c4d831655125d6d4e2b237291b8e68f172cb375002c7ccdc49c3cfcf4ab6b7d65850d1a40bcc3f9979498eec697bae43dec7b54f
- SSDEEP
  
  192:AJCfeXBM5iG6zUMmY7QMlr4qLYFQjG6AcE103aNd9xZAqGQ2qFARewPxHFTX0:9feXB2iG6zUMmY7QM54qLYFQjG6AcE1X
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  bin/Monaco/vs/basic-languages/lua/autocompletes/classes/Enum.js
- Size
  
  594B
- MD5
  
  4d0ec8edaec389b1eba92c1d18676f09
- SHA1
  
  6eafd8ed47700b9a2ff1e10dd7468e50fab1bf6d
- SHA256
  
  9bd9c85c5d1f476e663889ab2008f83b323c8d794abb0df35d43091c689ef64d
- SHA512
  
  d4c7655d7db8d4f7d4bb2d0add36bef916caf291b2855785685a3e812279369848ce081ac6fb5cc869fb827653a4a1f874273af17bee67987e3c3a441ad368e8
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32