Overview

overview

10

Static

static

10

SecuriteIn...77.exe

windows7_x64

3

SecuriteIn...77.exe

windows10-2004_x64

10

Analysis

  • max time kernel
    43s
  • max time network
    46s
  • platform
    windows7_x64
  • resource
    win7-20220414-en
  • submitted
    02-07-2022 15:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SecuriteInfo.com.Variant.Tedy.123517.9877.exe

  • Size

    1.8MB

  • MD5

    212b1e774e310dbe4e92b01854f31d53

  • SHA1

    635349bf28642a2a4b32155fe2864f6dfd51a483

  • SHA256

    d22de2ac8939c185e56867b691702abd0304adf75c2b62dbff801228bdcf0dbe

  • SHA512

    3c7be7251079c9610ddd5923307d4887746d6f43c8dcf81d82e2696726000cf8912be1530f1a388cd4520289bf0722dc270defbe23a631771a83befc2d9f689e

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Variant.Tedy.123517.9877.exe
    "C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Variant.Tedy.123517.9877.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1612
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 1612 -s 488
      2⤵
      • Program crash
      PID:1548

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1548-56-0x0000000000000000-mapping.dmp
    Download
  • memory/1612-54-0x0000000000170000-0x000000000034A000-memory.dmp
    Filesize

    1.9MB

    Download
  • memory/1612-55-0x00000000020C0000-0x000000000212C000-memory.dmp
    Filesize

    432KB

    Download