1c9e58e71c0e398c9e0cd687762d3df30a5c33743d9064794f5cffb3895674c8 | Triage

Analysis

max time kernel
121s
max time network
123s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
11/01/2024, 01:29 UTC

Sharing

Report Analysis Logs

General

Target

网愿科技-人才网 v2.1 Build 1228/about.asp
Size

3KB
MD5

fbc1c28892a7cde871c75a700811af39
SHA1

2a24211ce6eabd8cd93120ba8c5ca14d5598eff7
SHA256

fc330b85494b140632b6962725fe0583a019041bf26187dcb28682238432d3fa
SHA512

db84d4661cf9532c1f95ec5572f6945075bdc94e8e43139c94f9d4b6a0cfdf42c060844d746ddadb5576547a8a2c52d3e8c70e8a418e061e74ceb80d2d851879

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\网愿科技-人才网 v2.1 Build 1228\about.asp"
1⤵
PID:1664

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1664-21-0x0000000002630000-0x0000000002631000-memory.dmp

Filesize
4KB

Download