a9e8d1ccc5cd680e1dbdb493d9d73d6c984b8da93825a441283e3c5b24ff1c71 | Triage

Analysis

max time kernel
150s
max time network
147s
platform
windows10-1703_x64
resource
win10-20230220-en
resource tags

arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
submitted
07-06-2023 09:48

Sharing

Report Analysis Logs

General

Target

a9e8d1ccc5cd680e1dbdb493d9d73d6c984b8da93825a441283e3c5b24ff1c71.exe
Size

512KB
MD5

b1b39d929ffd0a914ae51edc1172b537
SHA1

fef4ee9a4f0894e57c1aee1ae10a92b13969373d
SHA256

a9e8d1ccc5cd680e1dbdb493d9d73d6c984b8da93825a441283e3c5b24ff1c71
SHA512

66f8905d9b97807e5436a75343b609e381c304902201effd92af47fe3ba031775b6be527f880905ddfc6db3295b4f75df2cb9276e0a2f9264f75de59b03b0a20
SSDEEP

6144:iVGdx6xiSFNX3y3UOENF/EMtFdcEBnG9hlxj4DTHbub3su5EVtiyaQZElWchK6l:WsE13yshtFdcKahsabcu5EVQ5l2S

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Users\Admin\AppData\Local\Temp\a9e8d1ccc5cd680e1dbdb493d9d73d6c984b8da93825a441283e3c5b24ff1c71.exe
"C:\Users\Admin\AppData\Local\Temp\a9e8d1ccc5cd680e1dbdb493d9d73d6c984b8da93825a441283e3c5b24ff1c71.exe"
1⤵
PID:3628

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads