Celery[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Celery.dll
Size

19.4MB
MD5

e08d98cb5e18e5da61f7f48657e2592a
SHA1

706a90c35a308e0eafe7f3e10a433b3607c0425d
SHA256

995be1ffc52effcf02564aeb4bbf358ca4aa0ff6b721183e768c5fc56558e5a9
SHA512

4fde21d79b79569ee7763fcbd62142c4e445722856de9243eda24d94d76a4e90f635425755f1346040312701c575d450c2a5b704a472c898acee42f21eeadf85
SSDEEP

393216:58hy57DdNAuyvw4wK/gsrlVwgqI59D8exrbwANXg5yH4LVvIoE4VrevE:4y1d2toVKrR5qI59woPXlOLmCK8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Celery.dll

Files

Celery.dll
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

u2X>ioW
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 19.2MB - Virtual size: 19.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ