35c193d328e8954b5ed69e8717318fa158ba67a71e5a1f90a42b9968ca450c5c | Triage

Analysis

max time kernel
121s
max time network
122s
platform
windows7_x64
resource
win7-20231129-en
resource tags

arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
submitted
31/12/2023, 01:40

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

西安娱乐网/config.asp
Size

219B
MD5

6f0b51ab8bb9c4a710d6670d77e54e96
SHA1

cea9fcab80b18631b97979f3f2122ecaf1e912f2
SHA256

09cb72f0d76aae1764fcfa530271ac1ace53b352cdc878537d924290374b5cb4
SHA512

c0f7a064e4f0955060f733223feeca426694330b3e246e2c050b59987e99e1bf3fb8e2b3d1022fc1d120a2e3b1d66608bce2ee4b78e498bb2058a5c3d106aacf

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\西安娱乐网\config.asp
1⤵
PID:2732

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2732-21-0x00000000023B0000-0x00000000023B1000-memory.dmp

Filesize
4KB

Download