f5f43a746e803c9390cd7d1cfa36b51f9feb505faa84982176505ebaf47a084a | Triage

Analysis

max time kernel
121s
max time network
125s
platform
windows7_x64
resource
win7-20240705-en
resource tags

arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
submitted
18/08/2024, 01:54

Sharing

Report Analysis Logs

General

Target

yfsj/web/admin/check02.asp
Size

2KB
MD5

77e4d20965461103d061a32f54eae13a
SHA1

21c8a1c07afd547ca5d170db4016c8c839b48cba
SHA256

3c046f2af8709de27260ea1ddd5e608dca43fc882c25812af8b759040354afd8
SHA512

3ec680b89ce94f160b6c4da5a755d90bfc137c34feb7a2f25f05b289db9b07932426c772eabef5aee3c2b5323791ba7dbda7e16117b0f1ab190d7ed327a91d2c

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\yfsj\web\admin\check02.asp
1⤵
PID:2768

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2768-21-0x0000000000450000-0x0000000000451000-memory.dmp

Filesize
4KB

Download