a062aeb687dd340251577953de85e248f62b21e979ebffe1c64e982f726c8dfa | Triage

Analysis

max time kernel
120s
max time network
121s
platform
windows7_x64
resource
win7-20240220-en
resource tags

arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
submitted
08/03/2024, 09:46

Sharing

Report Analysis Logs

General

Target

慈溪小吃网 v2.0/admin/addyulepic.asp
Size

5KB
MD5

3a464305823e911ee2cba2918cdeb136
SHA1

c1ceff3bad843879d0c5c5a14f0c064972791432
SHA256

2eed3ae8e15e8ebb58249e455e0e4e09a0cbf26e7082bee9472d78ae9ee25e05
SHA512

3775928d089e8f9a3414f5934b05da694b633b4b7aeb8aebeaee7474dff5072c23daf4ea61a73e4a2675da49fb06ba12b47a0dbc08d5eb2ad663536f8a3c58c7
SSDEEP

96:6fH0XRsRvIJOkOFmOmvDPBND73M02qHgjLX5f5BjQJ8VORzMHeHosSn6A7M:sUhmA7pFvr3M022eBTiGjM

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\慈溪小吃网 v2.0\admin\addyulepic.asp"
1⤵
PID:2184

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2184-21-0x00000000024F0000-0x00000000024F1000-memory.dmp

Filesize
4KB

Download