Overview

overview

8

Static

static

Vegas Pro ....0.dll

windows7-x64

3

Vegas Pro ....0.dll

windows10-2004-x64

3

Vegas Pro ...90.exe

windows7-x64

1

Vegas Pro ...90.exe

windows10-2004-x64

1

Vegas Pro ...41.exe

windows7-x64

8

Vegas Pro ...41.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    97s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    01-01-2023 09:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Vegas Pro 19/VEGAS_Pro_19.0.0.341.exe

  • Size

    864.5MB

  • MD5

    71633df0330f63b93f2325281024da55

  • SHA1

    b887377e96399a28e845e46fda04419f52857a3e

  • SHA256

    54cf2ddd57cc5d7a6936471f5ae3a6fb6d67e079245e0d007db70c1c13514890

  • SHA512

    dc4cad00537a9ce0c04b885fcebc8ce1235a5bd4a558a178a292857de94af5b0315c30885ec60ca331f5c20c1da2b799783f2049de280e232fac454b413ee93b

  • SSDEEP

    25165824:EcVc7FTsoHGLgRbigcho7xLM0GYj11+m29JR16:dVc7FTsom8RbiggoNo0GiOm29JRo

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Modifies Control Panel 7 IoCs
    evasion
  • Modifies system certificate store 2 TTPs 2 IoCs
    evasionspywaretrojan
  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Vegas Pro 19\VEGAS_Pro_19.0.0.341.exe
    "C:\Users\Admin\AppData\Local\Temp\Vegas Pro 19\VEGAS_Pro_19.0.0.341.exe"
    1⤵
    • Modifies Control Panel
    • Modifies system certificate store
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:1816

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1816-54-0x000007FEFBFB1000-0x000007FEFBFB3000-memory.dmp

    Filesize

    8KB

    Download