aa1da334fc56ebeb5f89a68edb3f061a83125fa83c47dc92947d1f6c9fc0058b | Triage

Analysis

max time kernel
119s
max time network
128s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
07-09-2024 22:47

Sharing

Report Analysis Logs

General

Target

海天在线.Net论坛系统 v1.0 正式版/Global.asp
Size

70B
MD5

eb7064aa339906bdee5e0c182c467fba
SHA1

22d6a7a61aefb7722642fd27fc17546be2a7e182
SHA256

ae36c5e7ea112cc6e382a4f0e33b5fd0b8d107e98ccba5387f9aa96ed4fbe7bc
SHA512

cebe87fecaccd2d035269f706beb49f46f72a2bf27faef16c585ef7cde757aac3e026d2aa6c05c802425c124239c26a2cb4b37ec839e3648675ca66e9e87bae4

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\海天在线.Net论坛系统 v1.0 正式版\Global.asp"
1⤵
PID:2912

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2912-21-0x00000000024F0000-0x00000000024F1000-memory.dmp

Filesize
4KB

Download