Overview

overview

10

Static

static

3

SecuriteIn...07.exe

windows7-x64

10

SecuriteIn...07.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    147s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24-06-2024 14:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SecuriteInfo.com.Win64.RansomX-gen.22171.1307.exe

  • Size

    11KB

  • MD5

    c65a7acf4b2c33a0a8caf91e5686cca1

  • SHA1

    dbb5493531f5102fc5c27d8214a8e597a4ce829c

  • SHA256

    f5335a10844d4ab1163464897df06c5002f58425c767ca9f5fa6ada7a06391c1

  • SHA512

    c1a507a1bbc6ba4a1b42900a5d2e48cc8f8cf276ada40e34899188d89afb9e2b6b1f39d95dc5e5474a10349d1dce01d75537964e1012e46b09e6fb7e229813b3

  • SSDEEP

    192:Bl6ghakGBkUkF9sFxsn2QTLur++ODhUaitzXzt+LHSWKy:2jkUkYFxsn2QC+pzitzXiS1

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Win64.RansomX-gen.22171.1307.exe
    "C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Win64.RansomX-gen.22171.1307.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:4756

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4756-0-0x00007FFB52013000-0x00007FFB52015000-memory.dmp

    Filesize

    8KB

    Download

  • memory/4756-1-0x0000016F66BC0000-0x0000016F66BC6000-memory.dmp

    Filesize

    24KB

    Download

  • memory/4756-2-0x00007FFB52010000-0x00007FFB52AD1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/4756-3-0x00007FFB52013000-0x00007FFB52015000-memory.dmp

    Filesize

    8KB

    Download

  • memory/4756-4-0x00007FFB52010000-0x00007FFB52AD1000-memory.dmp

    Filesize

    10.8MB

    Download