dc9eccc04bfb90e12ae05a2ed6d50707a1182f20b23f581eabf03d47c8e98db1

Analysis

max time kernel
142s
max time network
34s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
07/05/2023, 22:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

hd-acceleracers-with-battle-force-5-theme-song.mp4
Size

17.7MB
MD5

76ae30e1ddc27325d7e516ef789ca1af
SHA1

f4474d21f24caf606af6a6c52c5741868abcff82
SHA256

dc9eccc04bfb90e12ae05a2ed6d50707a1182f20b23f581eabf03d47c8e98db1
SHA512

99cc89bf4fc65c16efe352fecbae9c60c1f46abe3ab159ada2096cfcd00989fd3699ce15c1c6c7ee91086db77324bca021c2223797293aa57f95d2da4cd59ae5
SSDEEP

393216:/OWILMh4hyHvfazQorx8fjSqbys0nY31o9kwck9i3bWqfEKV1r:2WgM6Zrxy5ysQY31om9Frbf3

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
2020	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2020	vlc.exe

Suspicious use of AdjustPrivilegeToken 6 IoCs

description	pid	Process
Token: 33	1440	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	1440	AUDIODG.EXE
Token: 33	1440	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	1440	AUDIODG.EXE
Token: 33	2020	vlc.exe
Token: SeIncBasePriorityPrivilege	2020	vlc.exe

Suspicious use of FindShellTrayWindow 23 IoCs

pid	Process
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe

Suspicious use of SendNotifyMessage 5 IoCs

pid	Process
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe
2020	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2020	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\hd-acceleracers-with-battle-force-5-theme-song.mp4"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:2020

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x564
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:1440

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2020-59-0x000000013F890000-0x000000013F988000-memory.dmp

Filesize
992KB

Download
memory/2020-60-0x000007FEF7700000-0x000007FEF7734000-memory.dmp

Filesize
208KB

Download
memory/2020-61-0x000007FEF6CD0000-0x000007FEF6F84000-memory.dmp

Filesize
2.7MB

Download
memory/2020-62-0x000007FEFC070000-0x000007FEFC088000-memory.dmp

Filesize
96KB

Download
memory/2020-63-0x000007FEF76E0000-0x000007FEF76F7000-memory.dmp

Filesize
92KB

Download
memory/2020-64-0x000007FEF76C0000-0x000007FEF76D1000-memory.dmp

Filesize
68KB

Download
memory/2020-65-0x000007FEF7120000-0x000007FEF7137000-memory.dmp

Filesize
92KB

Download
memory/2020-66-0x000007FEF7100000-0x000007FEF7111000-memory.dmp

Filesize
68KB

Download
memory/2020-67-0x000007FEF70E0000-0x000007FEF70FD000-memory.dmp

Filesize
116KB

Download
memory/2020-68-0x000007FEF70C0000-0x000007FEF70D1000-memory.dmp

Filesize
68KB

Download
memory/2020-69-0x000007FEF5B10000-0x000007FEF6BBB000-memory.dmp

Filesize
16.7MB

Download
memory/2020-70-0x000007FEF5910000-0x000007FEF5B10000-memory.dmp

Filesize
2.0MB

Download
memory/2020-71-0x000007FEF6C90000-0x000007FEF6CCF000-memory.dmp

Filesize
252KB

Download
memory/2020-72-0x000007FEF58E0000-0x000007FEF5901000-memory.dmp

Filesize
132KB

Download
memory/2020-73-0x000007FEF6C00000-0x000007FEF6C18000-memory.dmp

Filesize
96KB

Download
memory/2020-74-0x000007FEF58C0000-0x000007FEF58D1000-memory.dmp

Filesize
68KB

Download
memory/2020-75-0x000007FEF58A0000-0x000007FEF58B1000-memory.dmp

Filesize
68KB

Download
memory/2020-76-0x000007FEF5880000-0x000007FEF5891000-memory.dmp

Filesize
68KB

Download
memory/2020-84-0x000007FEF5690000-0x000007FEF56E6000-memory.dmp

Filesize
344KB

Download
memory/2020-83-0x000007FEF56F0000-0x000007FEF5701000-memory.dmp

Filesize
68KB

Download
memory/2020-78-0x000007FEF5840000-0x000007FEF5851000-memory.dmp

Filesize
68KB

Download
memory/2020-82-0x000007FEF5710000-0x000007FEF577F000-memory.dmp

Filesize
444KB

Download
memory/2020-81-0x000007FEF5780000-0x000007FEF57E7000-memory.dmp

Filesize
412KB

Download
memory/2020-80-0x000007FEF57F0000-0x000007FEF5820000-memory.dmp

Filesize
192KB

Download
memory/2020-79-0x000007FEF5820000-0x000007FEF5838000-memory.dmp

Filesize
96KB

Download
memory/2020-77-0x000007FEF5860000-0x000007FEF587B000-memory.dmp

Filesize
108KB

Download
memory/2020-85-0x000007FEF5510000-0x000007FEF5688000-memory.dmp

Filesize
1.5MB

Download
memory/2020-86-0x000007FEF54F0000-0x000007FEF5507000-memory.dmp

Filesize
92KB

Download
memory/2020-87-0x000007FEF5380000-0x000007FEF54F0000-memory.dmp

Filesize
1.4MB

Download
memory/2020-88-0x000007FEF5360000-0x000007FEF5372000-memory.dmp

Filesize
72KB

Download
memory/2020-90-0x000007FEF52C0000-0x000007FEF530C000-memory.dmp

Filesize
304KB

Download
memory/2020-89-0x000007FEF5310000-0x000007FEF5352000-memory.dmp

Filesize
264KB

Download
memory/2020-91-0x000007FEF5150000-0x000007FEF52BB000-memory.dmp

Filesize
1.4MB

Download
memory/2020-92-0x000007FEF50F0000-0x000007FEF5147000-memory.dmp

Filesize
348KB

Download
memory/2020-93-0x000007FEF4EA0000-0x000007FEF50EB000-memory.dmp

Filesize
2.3MB

Download
memory/2020-94-0x000007FEF36F0000-0x000007FEF4EA0000-memory.dmp

Filesize
23.7MB

Download
memory/2020-98-0x000007FEF3680000-0x000007FEF3696000-memory.dmp

Filesize
88KB

Download
memory/2020-97-0x000007FEF36A0000-0x000007FEF36B1000-memory.dmp

Filesize
68KB

Download
memory/2020-96-0x000007FEF36C0000-0x000007FEF36EF000-memory.dmp

Filesize
188KB

Download
memory/2020-95-0x000007FEF7C40000-0x000007FEF7C50000-memory.dmp

Filesize
64KB

Download
memory/2020-99-0x000007FEF35B0000-0x000007FEF3675000-memory.dmp

Filesize
788KB

Download
memory/2020-100-0x000007FEF3530000-0x000007FEF35A5000-memory.dmp

Filesize
468KB

Download
memory/2020-102-0x000007FEF3450000-0x000007FEF34BD000-memory.dmp

Filesize
436KB

Download
memory/2020-101-0x000007FEF34C0000-0x000007FEF3522000-memory.dmp

Filesize
392KB

Download
memory/2020-103-0x000007FEF3430000-0x000007FEF3443000-memory.dmp

Filesize
76KB

Download
memory/2020-104-0x000007FEF3410000-0x000007FEF3424000-memory.dmp

Filesize
80KB

Download
memory/2020-105-0x000007FEF33C0000-0x000007FEF3410000-memory.dmp

Filesize
320KB

Download
memory/2020-106-0x000007FEF33A0000-0x000007FEF33B5000-memory.dmp

Filesize
84KB

Download
memory/2020-107-0x000007FEF3180000-0x000007FEF339D000-memory.dmp

Filesize
2.1MB

Download
memory/2020-108-0x000007FEF30E0000-0x000007FEF30F5000-memory.dmp

Filesize
84KB

Download
memory/2020-109-0x000007FEF30B0000-0x000007FEF30D3000-memory.dmp

Filesize
140KB

Download
memory/2020-110-0x000007FEF3090000-0x000007FEF30A3000-memory.dmp

Filesize
76KB

Download
memory/2020-111-0x000007FEF2C60000-0x000007FEF2D54000-memory.dmp

Filesize
976KB

Download
memory/2020-112-0x000007FEF3060000-0x000007FEF308A000-memory.dmp

Filesize
168KB

Download
memory/2020-113-0x000007FEF3020000-0x000007FEF3031000-memory.dmp

Filesize
68KB

Download
memory/2020-114-0x000007FEF3000000-0x000007FEF3012000-memory.dmp

Filesize
72KB

Download
memory/2020-115-0x000007FEF2FE0000-0x000007FEF2FF3000-memory.dmp

Filesize
76KB

Download
memory/2020-116-0x000007FEF2AE0000-0x000007FEF2C5A000-memory.dmp

Filesize
1.5MB

Download
memory/2020-117-0x000007FEF2AC0000-0x000007FEF2ADB000-memory.dmp

Filesize
108KB

Download
memory/2020-118-0x000007FEF2AA0000-0x000007FEF2AB2000-memory.dmp

Filesize
72KB

Download
memory/2020-119-0x000007FEF2A80000-0x000007FEF2A95000-memory.dmp

Filesize
84KB

Download
memory/2020-120-0x000007FEF2A60000-0x000007FEF2A73000-memory.dmp

Filesize
76KB

Download
memory/2020-121-0x000007FEF2A40000-0x000007FEF2A54000-memory.dmp

Filesize
80KB

Download
memory/2020-122-0x000007FEF2A20000-0x000007FEF2A32000-memory.dmp

Filesize
72KB

Download