118f42ce1fde2e9ec7a5681b0ce8d06b39b158f244df3de53c83483525ce0003 | Triage

Analysis

max time kernel
30s
max time network
33s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
16/06/2023, 22:36

Sharing

Report Analysis Logs

General

Target

118f42ce1fde2e9ec7a5681b0ce8d06b39b158f244df3de53c83483525ce0003.exe
Size

2.9MB
MD5

20a45b4b4f54534b0b16f5bd2a0cbe45
SHA1

3b57d6a38395cdd475381c267febaf091b22cda1
SHA256

118f42ce1fde2e9ec7a5681b0ce8d06b39b158f244df3de53c83483525ce0003
SHA512

1e62d85300a425e8403d70f49b5894487f9db80e67119421ba1679f5538cd644e786d10ddfcbade3bbcc147870fc1180138b2dbde4f1c3b242232674cb61a73f
SSDEEP

49152:jkivaDQIjFIlpjNYqO2oAF+XyDwH6/yF6HEJnCOig+O3wlWoYejvsMusyc5hqy0/:jOQsFSsqO2oIwNFfCOiglJoYejvjCc5i

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Users\Admin\AppData\Local\Temp\118f42ce1fde2e9ec7a5681b0ce8d06b39b158f244df3de53c83483525ce0003.exe
"C:\Users\Admin\AppData\Local\Temp\118f42ce1fde2e9ec7a5681b0ce8d06b39b158f244df3de53c83483525ce0003.exe"
1⤵
PID:888

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads