7f7691fa94fa1eb15051c5d135cc1e07a74daca38893212670c23b9b175968d7 | Triage

Analysis

max time kernel
91s
max time network
95s
platform
windows11-21h2_x64
resource
win11-20240221-en
resource tags

arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
submitted
14/03/2024, 03:09

Sharing

Report Analysis Logs

General

Target

macOS cursors for Windows/Normal Select.cur
Size

133KB
MD5

346d145d89f61a3ae59d108c3394ed0f
SHA1

cf68508df51b792453c77a35a559f5d5f8ebfc4f
SHA256

4047f39039bc725d61837535103fb14346b5e3e3cb41453014edcb4a311794d3
SHA512

2c0ef96ef3a247f79317d019d32bab5b413fe6422fd5328a5b2bd7d5ca5219e8b98a47ff875885bfc26d9ee9ded5a35133ec7118e544347baf12edf1426a713a
SSDEEP

192:rRp/dbOaS8vEQ9pAUtFh5fEkOSiK5AImrZkmWeuQL9M9Z+BROHeT8PB:rRldhS8MQbjtFh5cBSxAntdMzHLPB

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\macOS cursors for Windows\Normal Select.cur"
1⤵
PID:1972

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads