e3a1b629fab490004ea7807a89a123cf9e2016640174809808920325300022e0 | Triage

Analysis

max time kernel
118s
max time network
119s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
30-08-2024 10:16

Sharing

Report Analysis Logs

General

Target

so/index.asp
Size

15KB
MD5

5a87d3bf698ed02828604d08bd13a1d2
SHA1

1bdcaa99fbcd94976f796dfa194127b7c3c5f096
SHA256

2071733a57f1f70d23a4fa2bf6a8d78eca8700d43686b4951699d97dab77eb75
SHA512

895a3e4b2eecbd101668400df6e19d91fed64cacdd146cbc52ee2d0c55f3e3c2993696a2bfd61201331ee263129a955edcb580ec15a7286679e52a58072139ae
SSDEEP

192:0MHs2xYLYpxkE17PlRk6xQeLmlo5+0PtFdGkvHVQMFTejW7k:0MM2xyE17PlRk6+Qmlo5+0PtFhHKHjz

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\so\index.asp
1⤵
PID:2580

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2580-21-0x0000000002350000-0x0000000002351000-memory.dmp

Filesize
4KB

Download