425e4f4085a7f8430e3a6df260fea8f0bd293e3e5b243bedc0fa70c0ba748eaf | Triage

Analysis

max time kernel
121s
max time network
138s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
25/12/2023, 20:35

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

3ba8f39ff7d00730ba289ed5d810356e.exe
Size

697KB
MD5

3ba8f39ff7d00730ba289ed5d810356e
SHA1

0ff7a77ad994d459a0ff8d7c7a54b0ba51c3e492
SHA256

425e4f4085a7f8430e3a6df260fea8f0bd293e3e5b243bedc0fa70c0ba748eaf
SHA512

fd9e4cbdb8b6ae8fe3edc5c434b18edda4fbb4376f139266af8ad2052dd5ba40de8b1f5bc9a6260c3efd100de5787d0fb60f3d6693d85ed1d96d293d6a1c5c01
SSDEEP

12288:Y+T4UN3K3vTrRAWCmIyvDPc/JCvcak8Fqz96hZyn6BFzQ4KJCxOClf:fT4UlmRAWw2DPA2Bqp6hZy6BhQ4I0

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Users\Admin\AppData\Local\Temp\3ba8f39ff7d00730ba289ed5d810356e.exe
"C:\Users\Admin\AppData\Local\Temp\3ba8f39ff7d00730ba289ed5d810356e.exe"
1⤵
PID:3060

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads