Overview

overview

6

Static

static

1

hra.rar

windows7-x64

3

hra.rar

windows10-2004-x64

3

hra/LLL_Ma...ources

windows7-x64

1

hra/LLL_Ma...ources

windows10-2004-x64

1

hra/LLL_Ma..._extra

windows7-x64

1

hra/LLL_Ma..._extra

windows10-2004-x64

1

hra/LLL_Ma...s.json

windows7-x64

3

hra/LLL_Ma...s.json

windows10-2004-x64

3

hra/LLL_Ma...s.json

windows7-x64

3

hra/LLL_Ma...s.json

windows10-2004-x64

3

hra/LLL_Ma...RK.wav

windows7-x64

1

hra/LLL_Ma...RK.wav

windows10-2004-x64

6

hra/LLL_Ma...ds.wav

windows7-x64

1

hra/LLL_Ma...ds.wav

windows10-2004-x64

6

hra/LLL_Ma...SM.wav

windows7-x64

1

hra/LLL_Ma...SM.wav

windows10-2004-x64

6

hra/LLL_Ma...sa.wav

windows7-x64

1

hra/LLL_Ma...sa.wav

windows10-2004-x64

6

hra/LLL_Ma...er.wav

windows7-x64

1

hra/LLL_Ma...er.wav

windows10-2004-x64

6

hra/LLL_Ma...ar.wav

windows7-x64

1

hra/LLL_Ma...ar.wav

windows10-2004-x64

6

hra/LLL_Ma...ve.wav

windows7-x64

1

hra/LLL_Ma...ve.wav

windows10-2004-x64

6

hra/LLL_Ma...ar.wav

windows7-x64

1

hra/LLL_Ma...ar.wav

windows10-2004-x64

6

hra/LLL_Ma...UT.wav

windows7-x64

1

hra/LLL_Ma...UT.wav

windows10-2004-x64

6

hra/LLL_Ma...al.wav

windows7-x64

1

hra/LLL_Ma...al.wav

windows10-2004-x64

6

hra/LLL_Ma...3).wav

windows7-x64

1

hra/LLL_Ma...3).wav

windows10-2004-x64

6

Analysis

  • max time kernel
    141s
  • max time network
    34s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    31-03-2023 18:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    hra/LLL_Mantis_Data/StreamingAssets/Call of Duty World at War.wav

  • Size

    1.1MB

  • MD5

    a604ab3667dc202f7a4f5147994f1b85

  • SHA1

    f5480b211ec4d5b6c85d64d1d4df79c7ffd92e1b

  • SHA256

    8329a946533a6180393c133000229d6d80f7b5bdfe71a79f6b69738184a4e653

  • SHA512

    b00066cbf891327952b0691346d8a8e853a95436328a8bfd6c3805e760ec8ced8d804acf5a81ca077f02d0d2c99ccdabb4157b483b9e05536768586cb4aea8c0

  • SSDEEP

    24576:mYC8q9rsHB65MfEbPAglMgH6U9N7Rtkug+QKMtbID62f:muq4GBKQt/kug+Q/E

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 6 IoCs
  • Suspicious use of FindShellTrayWindow 9 IoCs
  • Suspicious use of SendNotifyMessage 8 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\hra\LLL_Mantis_Data\StreamingAssets\Call of Duty World at War.wav"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:1400
  • C:\Windows\system32\AUDIODG.EXE
    C:\Windows\system32\AUDIODG.EXE 0x554
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:436

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1400-54-0x000000013FC50000-0x000000013FD48000-memory.dmp

    Filesize

    992KB

    Download

  • memory/1400-60-0x000007FEFB220000-0x000007FEFB254000-memory.dmp

    Filesize

    208KB

    Download

  • memory/1400-61-0x000007FEF68C0000-0x000007FEF6B74000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/1400-62-0x000007FEFBBB0000-0x000007FEFBBC8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1400-64-0x000007FEFAC70000-0x000007FEFAC81000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1400-63-0x000007FEFAC90000-0x000007FEFACA7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1400-67-0x000007FEFAC10000-0x000007FEFAC2D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/1400-68-0x000007FEFABF0000-0x000007FEFAC01000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1400-66-0x000007FEFAC30000-0x000007FEFAC41000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1400-65-0x000007FEFAC50000-0x000007FEFAC67000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1400-69-0x000007FEF65D0000-0x000007FEF67D0000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1400-72-0x000007FEFAB90000-0x000007FEFABA8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1400-71-0x000007FEF7300000-0x000007FEF7321000-memory.dmp

    Filesize

    132KB

    Download

  • memory/1400-70-0x000007FEFABB0000-0x000007FEFABEF000-memory.dmp

    Filesize

    252KB

    Download

  • memory/1400-73-0x000007FEF5520000-0x000007FEF65CB000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/1400-83-0x000007FEF6870000-0x000007FEF6881000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1400-84-0x000007FEF53E0000-0x000007FEF5436000-memory.dmp

    Filesize

    344KB

    Download

  • memory/1400-90-0x000007FEF5320000-0x000007FEF5332000-memory.dmp

    Filesize

    72KB

    Download

  • memory/1400-92-0x000007FEF52D0000-0x000007FEF52E3000-memory.dmp

    Filesize

    76KB

    Download

  • memory/1400-94-0x000007FEF5130000-0x000007FEF5147000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1400-95-0x000007FEF7830000-0x000007FEF7840000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1400-96-0x000007FEF5100000-0x000007FEF512F000-memory.dmp

    Filesize

    188KB

    Download

  • memory/1400-97-0x000007FEF50E0000-0x000007FEF50F1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1400-98-0x000007FEF50C0000-0x000007FEF50D6000-memory.dmp

    Filesize

    88KB

    Download

  • memory/1400-93-0x000007FEF5150000-0x000007FEF52C8000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/1400-99-0x000007FEF50A0000-0x000007FEF50B5000-memory.dmp

    Filesize

    84KB

    Download

  • memory/1400-91-0x000007FEF52F0000-0x000007FEF5311000-memory.dmp

    Filesize

    132KB

    Download

  • memory/1400-89-0x000007FEF5340000-0x000007FEF5351000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1400-88-0x000007FEF5360000-0x000007FEF5383000-memory.dmp

    Filesize

    140KB

    Download

  • memory/1400-87-0x000007FEF5390000-0x000007FEF53A7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1400-86-0x000007FEF53B0000-0x000007FEF53D4000-memory.dmp

    Filesize

    144KB

    Download

  • memory/1400-85-0x000007FEF6840000-0x000007FEF6868000-memory.dmp

    Filesize

    160KB

    Download

  • memory/1400-82-0x000007FEF5440000-0x000007FEF54AF000-memory.dmp

    Filesize

    444KB

    Download

  • memory/1400-81-0x000007FEF54B0000-0x000007FEF5517000-memory.dmp

    Filesize

    412KB

    Download

  • memory/1400-80-0x000007FEF6890000-0x000007FEF68C0000-memory.dmp

    Filesize

    192KB

    Download

  • memory/1400-79-0x000007FEF6CB0000-0x000007FEF6CC8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1400-78-0x000007FEF6CD0000-0x000007FEF6CE1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1400-77-0x000007FEF6CF0000-0x000007FEF6D0B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/1400-76-0x000007FEF6D10000-0x000007FEF6D21000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1400-75-0x000007FEF72C0000-0x000007FEF72D1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1400-74-0x000007FEF72E0000-0x000007FEF72F1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1400-102-0x000007FEF68C0000-0x000007FEF6B74000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/1400-114-0x000007FEF5520000-0x000007FEF65CB000-memory.dmp

    Filesize

    16.7MB

    Download