6ba0b632cda0a6c32332b11aed24a24221b0d673f29d93cc9938f0201cc8c90b | Triage

Analysis

max time kernel
90s
max time network
95s
platform
windows11-21h2_x64
resource
win11-20240611-en
resource tags

arch:x64arch:x86image:win11-20240611-enlocale:en-usos:windows11-21h2-x64system
submitted
03-07-2024 17:54

Sharing

Report Analysis Logs

General

Target

cascade_0.9.4/unrar.exe
Size

282KB
MD5

0222d520d4361ab91095f30622c3e7a2
SHA1

0541f378e598140121b45a5a7369951d73bc3182
SHA256

6791181693509d410ed357317c45ccb53819b0d0666d3afa49c71522f42b2bd2
SHA512

75e3f5265470b94a268397579ce7a4c4b49858ac0cd1df841d8d5a4a9d36fdcdce0b6ccb37a7349a69912997a15fbbff22160a3a17dec75fbd445c4a88e859b6
SSDEEP

6144:ADfb9PX/68mO5D5QOHKp6lkTSd5Ne0ZGE6AccIMjaUg:ADfb9PX/68mO5D5Qa3q+zNRPcCj

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Users\Admin\AppData\Local\Temp\cascade_0.9.4\unrar.exe
"C:\Users\Admin\AppData\Local\Temp\cascade_0.9.4\unrar.exe"
1⤵
PID:2020

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2020-0-0x0000000000400000-0x0000000000459000-memory.dmp

Filesize
356KB

Download