85a13924ef755048ad182ebe37b46dda940416ed7e8233a892a5aca7e685142d | Triage

Analysis

max time kernel
121s
max time network
123s
platform
windows7_x64
resource
win7-20240705-en
resource tags

arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
submitted
10-07-2024 14:19

Sharing

Report Analysis Logs

General

Target

YUKI工作室 v1.0/L_vote.asp
Size

637B
MD5

ba7a1e056dab8f954fc7205746d5701e
SHA1

ff0d170b25b8707d9edbb00495163f613afa9d69
SHA256

989a43625b90183445b86faf0076bbcc7aeb46339854c7812fd6b7a5a17bbc72
SHA512

1ec9c3e9af2ffd13ebb87142d2a32a7fee818dcdc682a7a812966c148d33134dda06a07947c3c697966e691f04b7ddfc519442fb69eb3a4d057dc9e8c03d9eb7

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\YUKI工作室 v1.0\L_vote.asp"
1⤵
PID:2280

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2280-21-0x0000000002B00000-0x0000000002B01000-memory.dmp

Filesize
4KB

Download