926e402724da6d57dc13d90c932362f203decf3120f6470dd35a310622c1a8c8 | Triage

Analysis

max time kernel
117s
max time network
118s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
23-08-2024 01:46

Sharing

Report Analysis Logs

General

Target

e网企业 v2.0/Manage.asp
Size

5KB
MD5

82f41a83a99a7756694a254d99c1556c
SHA1

f3e90e523f91a150210281f6764faffd18452e14
SHA256

98e8db12f1d89609ab7b3b613d121dee986dd062d2bb253ab8bfdf89a041eee9
SHA512

6c41b754d72f98ff3f61794065f2c82c0fa069ae33dc2287f9c8798aa910758fba2a8e4d7a10dee36c7ebf8f2f4735c4bb1afc0ba33a191ca328e3b0db24c076
SSDEEP

96:XPv4vZMmvTvshyVRAGRRRv5j2hmQo0LwZ5jrVlWsZZZI3YVddddddddtMl0wGmMC:XPAR7L0hyjAkHgAF0LI5j5FHIo8l0xmV

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\e网企业 v2.0\Manage.asp"
1⤵
PID:2300

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2300-21-0x0000000000710000-0x0000000000711000-memory.dmp

Filesize
4KB

Download