549dbe51d672d510fcfc4bc41a0b7bc94052ecd2bd5da5b901af6fa830d9a270 | Triage

Analysis

max time kernel
142s
max time network
152s
platform
windows11-21h2_x64
resource
win11-20240221-en
resource tags

arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
submitted
29-02-2024 00:20

Sharing

Report Analysis Logs

General

Target

Resources/register/yes.png
Size

2KB
MD5

5a4b3f9405f6519477ae3e70645dffbf
SHA1

2446691cde5da5146897fd6238b103659b7644d8
SHA256

0f8cbccf7bf88849a30e45a2f11cb8d8d0b150a5295ec4cfbce17423b39771ad
SHA512

695ec82b4527bf360aa8afd19d4b2329815672df630f05a0a74d00ff9fa9cefd6549a9ed948e8612093aea00be1d4fa49eb57d7b81ee0982a21ac23965a43313

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\Resources\register\yes.png
1⤵
PID:4900

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads