Overview

overview

10

Static

static

SecuriteIn...96.exe

windows7_x64

3

SecuriteIn...96.exe

windows10-2004_x64

10

Analysis

  • max time kernel
    42s
  • max time network
    49s
  • platform
    windows7_x64
  • resource
    win7-20220414-en
  • submitted
    20-05-2022 23:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SecuriteInfo.com.Variant.Tedy.122593.7296.exe

  • Size

    1.0MB

  • MD5

    a3f9db216c595bbb5081ad0430248975

  • SHA1

    e06a7da7340e4e27d9737e58554ab4419116a0e2

  • SHA256

    647c540fe4c9f3dc5a06c978ff0644905b07a53517e637f674a089f866a135d0

  • SHA512

    3a6eb7aac3afed0438d1005f4534cc9a45b6697b8c0c266d1fae1b32cf84cd15726a005fc707ff2500f8b2bc045ea7ec20c715efeb4211e6b4b33d6c1afa56a5

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Variant.Tedy.122593.7296.exe
    "C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Variant.Tedy.122593.7296.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1044
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 1044 -s 548
      2⤵
      • Program crash
      PID:1164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1044-54-0x0000000000270000-0x0000000000382000-memory.dmp
    Filesize

    1.1MB

    Download
  • memory/1164-55-0x0000000000000000-mapping.dmp
    Download