991270597bf668ecee70055e29612a62a9328ec1b130d9da3d83e927d8be2eac | Triage

Analysis

max time kernel
121s
max time network
122s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
28/05/2024, 15:07

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

Thumbs.db
Size

98KB
MD5

44771d8a2534a2178c10c31a2311c079
SHA1

375cedb5cae55780accdc61b4690c2482d13cf6e
SHA256

991270597bf668ecee70055e29612a62a9328ec1b130d9da3d83e927d8be2eac
SHA512

87001a7eb1a938b35bdbe9a770655deb81c449ac4660aba3a391439abc98341c771c520182f6dd3326ca6a221afd96c8de6ec1803f6b8f7acf8feff576cc143a
SSDEEP

1536:czKXu1T81yQW9zohjWY+raZ0oQZzBpk/NgNlC3WVWWBtMDtuAsSi0ZXfwe3U1hTe:RdGoEz7k/cs3UW4+uzSvXf5U1IAot7o

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\Thumbs.db
1⤵
PID:856

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/856-21-0x0000000002530000-0x0000000002531000-memory.dmp

Filesize
4KB

Download