45d8ac0c6817084b5db30113340ae26397a635873b3fb15b9b1d09060a7701a9 | Triage

Analysis

max time kernel
122s
max time network
123s
platform
windows7_x64
resource
win7-20231129-en
resource tags

arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
submitted
19-03-2024 11:49

Sharing

Report Analysis Logs

General

Target

SZ企业快速建站系统/eshop.asp
Size

5KB
MD5

455075deb4336052106692fed4fc578b
SHA1

7c33caf6598ab60b4a43e4ef22d65675f282b7d1
SHA256

9de489cadb8ddf87c423162afead81a4407e2ec1dae2f3d4abefd03ee97b2667
SHA512

3047c2179926dd9dbae4f51831adb9d8adb627fbbec698d8c712e48b678f2ce8ebae0e3bcb916ed51a27107a413dc977b5777eb2268788c97ee859b6686d3dc1
SSDEEP

96:QdXz4M/lASCM/TnDDTtd87rjyBxjvU9QIvLvIv9Wxe9hV2F1Zzj0zKizsEz01s1N:qeSHxa7r2zIbLM9TFGuF9tSm

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\SZ企业快速建站系统\eshop.asp
1⤵
PID:2344

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2344-21-0x0000000002530000-0x0000000002531000-memory.dmp

Filesize
4KB

Download