Overview

overview

6

Static

static

1

Chica Videos.rar

windows7-x64

3

Chica Videos.rar

windows10-2004-x64

3

Chica Vide...p1.wmv

windows7-x64

1

Chica Vide...p1.wmv

windows10-2004-x64

6

Chica Vide...p2.wmv

windows7-x64

1

Chica Vide...p2.wmv

windows10-2004-x64

6

Chica Videos/cum.wmv

windows7-x64

1

Chica Videos/cum.wmv

windows10-2004-x64

6

Chica Vide...hj.wmv

windows7-x64

1

Chica Vide...hj.wmv

windows10-2004-x64

6

Chica Videos/idle.wmv

windows7-x64

1

Chica Videos/idle.wmv

windows10-2004-x64

6

Chica Vide...ro.wmv

windows7-x64

1

Chica Vide...ro.wmv

windows10-2004-x64

6

Chica Videos/lift.wmv

windows7-x64

1

Chica Videos/lift.wmv

windows10-2004-x64

6

Chica Vide...on.wmv

windows7-x64

1

Chica Vide...on.wmv

windows10-2004-x64

6

Chica Vide...le.wmv

windows7-x64

1

Chica Vide...le.wmv

windows10-2004-x64

6

Analysis

  • max time kernel
    142s
  • max time network
    34s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    24/03/2023, 22:38

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Chica Videos/mission.wmv

  • Size

    6.0MB

  • MD5

    5a917f31fa376e0ab578427daf32a367

  • SHA1

    bc8dd1afb222d35c45d76ebcb46b8a742a6f0a3c

  • SHA256

    07c4da6afc3ef02ed822beafaa316c52ea6eb034a99e70a56cf3932c669fe984

  • SHA512

    58dd3ddeea9c5cc179282fe0027a9e399e547632b5677af488741cd2e87374a0dfad0d001565ce9c8009a4e8912c1701baa203dab857422658c7fca7f95a497a

  • SSDEEP

    98304:JTyCv1lkb7rI2u4sHj6Gx6fBnJJSqWkpAsmt90DxDU09mTjmKaqm5oZawHLDJjl3:H9lUq6rxfSqB6bt90NfUTgqm5ocw1WIn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 6 IoCs
  • Suspicious use of FindShellTrayWindow 49 IoCs
  • Suspicious use of SendNotifyMessage 9 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Chica Videos\mission.wmv"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:1724
  • C:\Windows\system32\AUDIODG.EXE
    C:\Windows\system32\AUDIODG.EXE 0x568
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1760

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1724-59-0x000000013F610000-0x000000013F708000-memory.dmp

          Filesize

          992KB

          Download

        • memory/1724-60-0x000007FEFB340000-0x000007FEFB374000-memory.dmp

          Filesize

          208KB

          Download

        • memory/1724-61-0x000007FEF6A40000-0x000007FEF6CF4000-memory.dmp

          Filesize

          2.7MB

          Download

        • memory/1724-62-0x000007FEFBEF0000-0x000007FEFBF08000-memory.dmp

          Filesize

          96KB

          Download

        • memory/1724-63-0x000007FEFB310000-0x000007FEFB327000-memory.dmp

          Filesize

          92KB

          Download

        • memory/1724-64-0x000007FEFB2F0000-0x000007FEFB301000-memory.dmp

          Filesize

          68KB

          Download

        • memory/1724-65-0x000007FEFB2D0000-0x000007FEFB2E7000-memory.dmp

          Filesize

          92KB

          Download

        • memory/1724-66-0x000007FEFAFF0000-0x000007FEFB001000-memory.dmp

          Filesize

          68KB

          Download

        • memory/1724-67-0x000007FEFADF0000-0x000007FEFAE0D000-memory.dmp

          Filesize

          116KB

          Download

        • memory/1724-68-0x000007FEFADD0000-0x000007FEFADE1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/1724-69-0x000007FEF6840000-0x000007FEF6A40000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/1724-70-0x000007FEF4FB0000-0x000007FEF605B000-memory.dmp

          Filesize

          16.7MB

          Download

        • memory/1724-71-0x000007FEFAD90000-0x000007FEFADCF000-memory.dmp

          Filesize

          252KB

          Download

        • memory/1724-72-0x000007FEFAD60000-0x000007FEFAD81000-memory.dmp

          Filesize

          132KB

          Download

        • memory/1724-73-0x000007FEF6FC0000-0x000007FEF6FD8000-memory.dmp

          Filesize

          96KB

          Download

        • memory/1724-74-0x000007FEF6FA0000-0x000007FEF6FB1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/1724-75-0x000007FEF6F80000-0x000007FEF6F91000-memory.dmp

          Filesize

          68KB

          Download

        • memory/1724-76-0x000007FEF6F60000-0x000007FEF6F71000-memory.dmp

          Filesize

          68KB

          Download

        • memory/1724-78-0x000007FEF6F20000-0x000007FEF6F31000-memory.dmp

          Filesize

          68KB

          Download

        • memory/1724-77-0x000007FEF6F40000-0x000007FEF6F5B000-memory.dmp

          Filesize

          108KB

          Download

        • memory/1724-80-0x000007FEF6ED0000-0x000007FEF6F00000-memory.dmp

          Filesize

          192KB

          Download

        • memory/1724-79-0x000007FEF6F00000-0x000007FEF6F18000-memory.dmp

          Filesize

          96KB

          Download

        • memory/1724-81-0x000007FEF6E60000-0x000007FEF6EC7000-memory.dmp

          Filesize

          412KB

          Download

        • memory/1724-82-0x000007FEF67D0000-0x000007FEF683F000-memory.dmp

          Filesize

          444KB

          Download

        • memory/1724-83-0x000007FEF6E40000-0x000007FEF6E51000-memory.dmp

          Filesize

          68KB

          Download

        • memory/1724-85-0x000007FEF6740000-0x000007FEF6768000-memory.dmp

          Filesize

          160KB

          Download

        • memory/1724-84-0x000007FEF6770000-0x000007FEF67C6000-memory.dmp

          Filesize

          344KB

          Download

        • memory/1724-86-0x000007FEF6710000-0x000007FEF6734000-memory.dmp

          Filesize

          144KB

          Download

        • memory/1724-87-0x000007FEF6590000-0x000007FEF6708000-memory.dmp

          Filesize

          1.5MB

          Download

        • memory/1724-88-0x000007FEF6E20000-0x000007FEF6E37000-memory.dmp

          Filesize

          92KB

          Download

        • memory/1724-89-0x000007FEFB2C0000-0x000007FEFB2D0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1724-90-0x000007FEF6560000-0x000007FEF658F000-memory.dmp

          Filesize

          188KB

          Download

        • memory/1724-91-0x000007FEF6540000-0x000007FEF6551000-memory.dmp

          Filesize

          68KB

          Download

        • memory/1724-92-0x000007FEF6520000-0x000007FEF6536000-memory.dmp

          Filesize

          88KB

          Download

        • memory/1724-93-0x000007FEF6450000-0x000007FEF6515000-memory.dmp

          Filesize

          788KB

          Download

        • memory/1724-94-0x000007FEF63D0000-0x000007FEF6445000-memory.dmp

          Filesize

          468KB

          Download

        • memory/1724-95-0x000007FEF6360000-0x000007FEF63C2000-memory.dmp

          Filesize

          392KB

          Download

        • memory/1724-96-0x000007FEF62F0000-0x000007FEF635D000-memory.dmp

          Filesize

          436KB

          Download

        • memory/1724-97-0x000007FEF62D0000-0x000007FEF62E3000-memory.dmp

          Filesize

          76KB

          Download

        • memory/1724-98-0x000007FEF62B0000-0x000007FEF62C4000-memory.dmp

          Filesize

          80KB

          Download

        • memory/1724-99-0x000007FEF6260000-0x000007FEF62B0000-memory.dmp

          Filesize

          320KB

          Download

        • memory/1724-100-0x000007FEF61A0000-0x000007FEF625D000-memory.dmp

          Filesize

          756KB

          Download

        • memory/1724-101-0x000007FEF6170000-0x000007FEF61A0000-memory.dmp

          Filesize

          192KB

          Download

        • memory/1724-102-0x000007FEF3800000-0x000007FEF4FB0000-memory.dmp

          Filesize

          23.7MB

          Download

        • memory/1724-107-0x000007FEF3520000-0x000007FEF368B000-memory.dmp

          Filesize

          1.4MB

          Download

        • memory/1724-106-0x000007FEF60B0000-0x000007FEF60FC000-memory.dmp

          Filesize

          304KB

          Download

        • memory/1724-105-0x000007FEF6100000-0x000007FEF6142000-memory.dmp

          Filesize

          264KB

          Download

        • memory/1724-108-0x000007FEF34C0000-0x000007FEF3517000-memory.dmp

          Filesize

          348KB

          Download

        • memory/1724-103-0x000007FEF3690000-0x000007FEF3800000-memory.dmp

          Filesize

          1.4MB

          Download

        • memory/1724-104-0x000007FEF6150000-0x000007FEF6162000-memory.dmp

          Filesize

          72KB

          Download

        • memory/1724-109-0x000007FEF3270000-0x000007FEF34BB000-memory.dmp

          Filesize

          2.3MB

          Download

        • memory/1724-111-0x000007FEF6090000-0x000007FEF60A5000-memory.dmp

          Filesize

          84KB

          Download

        • memory/1724-112-0x000007FEF3020000-0x000007FEF3043000-memory.dmp

          Filesize

          140KB

          Download

        • memory/1724-113-0x000007FEF6070000-0x000007FEF6083000-memory.dmp

          Filesize

          76KB

          Download

        • memory/1724-110-0x000007FEF3050000-0x000007FEF326D000-memory.dmp

          Filesize

          2.1MB

          Download

        • memory/1724-114-0x000007FEF2F20000-0x000007FEF3014000-memory.dmp

          Filesize

          976KB

          Download

        • memory/1724-116-0x000007FEF2ED0000-0x000007FEF2EE3000-memory.dmp

          Filesize

          76KB

          Download

        • memory/1724-118-0x000007FEF2E90000-0x000007FEF2EA2000-memory.dmp

          Filesize

          72KB

          Download

        • memory/1724-119-0x000007FEF2E70000-0x000007FEF2E85000-memory.dmp

          Filesize

          84KB

          Download

        • memory/1724-120-0x000007FEF2E50000-0x000007FEF2E63000-memory.dmp

          Filesize

          76KB

          Download

        • memory/1724-117-0x000007FEF2EB0000-0x000007FEF2ECB000-memory.dmp

          Filesize

          108KB

          Download

        • memory/1724-115-0x000007FEF2EF0000-0x000007FEF2F1A000-memory.dmp

          Filesize

          168KB

          Download

        • memory/1724-121-0x000007FEF2E30000-0x000007FEF2E44000-memory.dmp

          Filesize

          80KB

          Download

        • memory/1724-122-0x000007FEF2E10000-0x000007FEF2E22000-memory.dmp

          Filesize

          72KB

          Download