fac611118ddabfa01c7d774fe380746f8dba9fa467a115d4c449206e6f3dd4a9 | Triage

Analysis

max time kernel
118s
max time network
119s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
08/07/2024, 15:09

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

wishcn/add.asp
Size

2KB
MD5

f537c1fd711ff6f207adaadef45b1ba5
SHA1

d154b7ef03d99c0cb93d1410dd1a0d321773b379
SHA256

82af036c256b4ae84b9928a6f580d7245dfc74d0815205b97e456d6afaf3cf26
SHA512

9e5dfafa09e1d264cdb938d731073d01beed19ef3272a08865b3d0a7edce3dca536e378c03e79658f95bc3cfead2760cb0b6a6e02e76a4946ea7aae169ed4600

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\wishcn\add.asp
1⤵
PID:1172

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1172-25-0x00000000001E0000-0x00000000001E1000-memory.dmp

Filesize
4KB

Download