f329ef2e93cac6dea7c9ba1a80c268ae50f851b2ee8ccb1d135a240e82232309 | Triage

Analysis

max time kernel
121s
max time network
127s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
28/09/2024, 14:47

Sharing

Report Analysis Logs

General

Target

便宜房产网 v1.0/admin/admin.asp
Size

12KB
MD5

84170e5c60f6fbfe564d8a1707cd59f8
SHA1

4bb73f2509bfd4d7723cdf39990e020bfacdd610
SHA256

c610ade10130453fa90a2c7ec1224f299874051023c51cedca014cc44c61cddc
SHA512

5bf83e507fbb6e3fdc466d0a33090632462460721520403fcdcec0f85b623147b4b8abf41fa51edd968d5ab865f5c49762b2883d5fabb945b4f5caf8e394bd9f
SSDEEP

192:mwhXV16ito8mtnqw3fWVqKRjqgdIT3896pqAnIpqh36pqh9E31F9ErnGlEg2o2HZ:rW

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\便宜房产网 v1.0\admin\admin.asp"
1⤵
PID:2096

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2096-21-0x0000000000550000-0x0000000000551000-memory.dmp

Filesize
4KB

Download