ee65e6d5aac07c1aaae0ece686cfe4bafedc47e35e5361a92d10eaacf437d18b

Analysis

max time kernel
121s
max time network
124s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
26/09/2024, 17:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

geekcatpingreducer.zip
Size

7.3MB
MD5

774b39cea52663767270aaa989c78c6a
SHA1

14549726aede4491aa8c7cac1b5a8b7e9a962d20
SHA256

ee65e6d5aac07c1aaae0ece686cfe4bafedc47e35e5361a92d10eaacf437d18b
SHA512

c7521cdb850989b8c891ea38fcb0357c6be37984cc4338c41b8d2a9e73c264962a2d8ac8a19b3b3646056a549478b056a0f54af761fbe3371940acc049d988cc
SSDEEP

196608:yOtYieHwxpAfnnWvxpY9v67FxcyvIpDUXmExXKprxMjguqA:bt1eQYnWvQ9v6RxMxmmExXK1xqgu7

Score

3^/10

discovery

Malware Config

Signatures

System Network Configuration Discovery: Internet Connection Discovery 1 TTPs 1 IoCs

Adversaries may check for Internet connectivity on compromised systems.

discovery

Internet Connection Discovery

T1016.001

pid	Process
2880	Explorer.exe

C:\Windows\Explorer.exe
C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\geekcatpingreducer.zip
1⤵
- System Network Configuration Discovery: Internet Connection Discovery
PID:2880

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Internet Connection Discovery

T1016.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads