43e739e9c79239c18a61a448e0fecfe3ff63039e5df6f099ecfec6ab8abcf087 | Triage

Analysis

max time kernel
120s
max time network
122s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
27-09-2024 22:17

Sharing

Report Analysis Logs

General

Target

1346数码港/Admin/Admin_Admin.asp
Size

101B
MD5

aadaa63d82e970991d910df019835583
SHA1

77bc3933a01eefa8d21fbf8c59c7315c1f66ae4a
SHA256

4bf5c503de7b24b0aff3cd68e3e0590e5e5e18841b793bb565274845a6f51405
SHA512

d0fa3b861b0e08a7fe5980dad27446ef3ee804c7b58e5081cfe5b497a00b19295f0f450fb1da8604fb8d2c7f04866bce9ba7e805fb4d08193f5889bc63b7331e

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\1346数码港\Admin\Admin_Admin.asp
1⤵
PID:1996

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1996-21-0x00000000003E0000-0x00000000003E1000-memory.dmp

Filesize
4KB

Download