38f776492d511b9a3fb0aefedb17a32ce1cbb78a35086a5b55f9d1080fdf2076 | Triage

Analysis

max time kernel
298s
max time network
279s
platform
windows11-21h2_x64
resource
win11-20241007-en
resource tags

arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
submitted
09-10-2024 12:08

Sharing

Report Analysis Logs

General

Target

Outlook-djm1vs02.png
Size

45KB
MD5

59baf5dbdca2b1dd8bb13480feac2d06
SHA1

8ec952eb912722cdd7f21e6fe3f9bc39026ca7de
SHA256

75f779861388894acf8618798c0cf95b47cbadf0f0240a18ddab5ab40dbedfab
SHA512

2995de5424fc1f8b62e06cdedf661bf28f86d30909b827795aa2bc401be9a2115c17424c02ad4430ea2fc0a978db9659d86762b599ae831ed1ffcb0938274bd8
SSDEEP

768:NnW4AfSCwI7qRrYk4sjL6B5TJrl+81c33lZ2kyk7bpqCpT4Q3XPoktEW6rVIl:NnW46lwI7qRrYk4sjL6XdrlNS32kyebX

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\Outlook-djm1vs02.png
1⤵
PID:4848

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads