Overview

overview

6

Static

static

3

SugarySpir...02.rar

windows7-x64

3

SugarySpir...02.rar

windows10-2004-x64

3

SugarySpir...re.exe

windows7-x64

1

SugarySpir...re.exe

windows10-2004-x64

1

SugarySpir...ta.win

windows7-x64

3

SugarySpir...ta.win

windows10-2004-x64

3

SugarySpir...ro.mp4

windows7-x64

1

SugarySpir...ro.mp4

windows10-2004-x64

6

SugarySpir...ns.ini

windows7-x64

1

SugarySpir...ns.ini

windows10-2004-x64

1

SugarySpir...ce.dll

windows7-x64

1

SugarySpir...ce.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    17s
  • max time network
    35s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    04/06/2023, 10:51

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    SugarySpire_Dance_And_Cafe_Test_V1.02/gamedata/intro.mp4

  • Size

    26.7MB

  • MD5

    381266f71b3b8bc2cf879b0b3896e517

  • SHA1

    2b6d96e8a56d43222b186bbdbbdac9ffd062f513

  • SHA256

    b332adeb1831e507dbf5f79a997075beb5066555f489cbf911a270d6fb67e1db

  • SHA512

    c08781ec8c0c7b8acb33a23b881c72fc6348293cd7d0f13b87e646d744f0bf8cb81b9e2f08e09b64306f9c28b514bda7d76dc58fb7d8372cd378ec3014a0cce2

  • SSDEEP

    786432:ANoGecJwAsqoLIAhF2IkTPnbQNWWw3xJoI8:C/VwFjVpkbjBGI8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 6 IoCs
  • Suspicious use of FindShellTrayWindow 30 IoCs
  • Suspicious use of SendNotifyMessage 10 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\SugarySpire_Dance_And_Cafe_Test_V1.02\gamedata\intro.mp4"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:924
  • C:\Windows\system32\AUDIODG.EXE
    C:\Windows\system32\AUDIODG.EXE 0x560
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1536

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/924-59-0x000000013FA00000-0x000000013FAF8000-memory.dmp

          Filesize

          992KB

          Download

        • memory/924-60-0x000007FEFB490000-0x000007FEFB4C4000-memory.dmp

          Filesize

          208KB

          Download

        • memory/924-62-0x000007FEFBB50000-0x000007FEFBB68000-memory.dmp

          Filesize

          96KB

          Download

        • memory/924-63-0x000007FEFB470000-0x000007FEFB487000-memory.dmp

          Filesize

          92KB

          Download

        • memory/924-61-0x000007FEF6C00000-0x000007FEF6EB4000-memory.dmp

          Filesize

          2.7MB

          Download

        • memory/924-66-0x000007FEFAF90000-0x000007FEFAFA1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/924-65-0x000007FEFAFB0000-0x000007FEFAFC7000-memory.dmp

          Filesize

          92KB

          Download

        • memory/924-64-0x000007FEFB110000-0x000007FEFB121000-memory.dmp

          Filesize

          68KB

          Download

        • memory/924-68-0x000007FEFAED0000-0x000007FEFAEE1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/924-67-0x000007FEFAEF0000-0x000007FEFAF0D000-memory.dmp

          Filesize

          116KB

          Download

        • memory/924-69-0x000007FEF69A0000-0x000007FEF6BA0000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/924-70-0x000007FEFAE90000-0x000007FEFAECF000-memory.dmp

          Filesize

          252KB

          Download

        • memory/924-77-0x000007FEF7100000-0x000007FEF711B000-memory.dmp

          Filesize

          108KB

          Download

        • memory/924-78-0x000007FEF70E0000-0x000007FEF70F1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/924-80-0x000007FEF7090000-0x000007FEF70C0000-memory.dmp

          Filesize

          192KB

          Download

        • memory/924-81-0x000007FEF7020000-0x000007FEF7087000-memory.dmp

          Filesize

          412KB

          Download

        • memory/924-82-0x000007FEF6930000-0x000007FEF699F000-memory.dmp

          Filesize

          444KB

          Download

        • memory/924-83-0x000007FEF7000000-0x000007FEF7011000-memory.dmp

          Filesize

          68KB

          Download

        • memory/924-84-0x000007FEF68D0000-0x000007FEF6926000-memory.dmp

          Filesize

          344KB

          Download

        • memory/924-91-0x000007FEF6640000-0x000007FEF6705000-memory.dmp

          Filesize

          788KB

          Download

        • memory/924-92-0x000007FEF65C0000-0x000007FEF6635000-memory.dmp

          Filesize

          468KB

          Download

        • memory/924-90-0x000007FEF6710000-0x000007FEF6726000-memory.dmp

          Filesize

          88KB

          Download

        • memory/924-94-0x000007FEF64E0000-0x000007FEF654D000-memory.dmp

          Filesize

          436KB

          Download

        • memory/924-95-0x000007FEF64C0000-0x000007FEF64D3000-memory.dmp

          Filesize

          76KB

          Download

        • memory/924-96-0x000007FEF64A0000-0x000007FEF64B4000-memory.dmp

          Filesize

          80KB

          Download

        • memory/924-97-0x000007FEF6450000-0x000007FEF64A0000-memory.dmp

          Filesize

          320KB

          Download

        • memory/924-93-0x000007FEF6550000-0x000007FEF65B2000-memory.dmp

          Filesize

          392KB

          Download

        • memory/924-89-0x000007FEF6730000-0x000007FEF6741000-memory.dmp

          Filesize

          68KB

          Download

        • memory/924-98-0x000007FEF62E0000-0x000007FEF6450000-memory.dmp

          Filesize

          1.4MB

          Download

        • memory/924-99-0x000007FEF62C0000-0x000007FEF62D2000-memory.dmp

          Filesize

          72KB

          Download

        • memory/924-100-0x000007FEF6270000-0x000007FEF62B2000-memory.dmp

          Filesize

          264KB

          Download

        • memory/924-88-0x000007FEF6BD0000-0x000007FEF6BFF000-memory.dmp

          Filesize

          188KB

          Download

        • memory/924-101-0x000007FEF6220000-0x000007FEF626C000-memory.dmp

          Filesize

          304KB

          Download

        • memory/924-87-0x000007FEFB460000-0x000007FEFB470000-memory.dmp

          Filesize

          64KB

          Download

        • memory/924-102-0x000007FEF4FE0000-0x000007FEF514B000-memory.dmp

          Filesize

          1.4MB

          Download

        • memory/924-103-0x000007FEF4F80000-0x000007FEF4FD7000-memory.dmp

          Filesize

          348KB

          Download

        • memory/924-86-0x000007FEF6FE0000-0x000007FEF6FF7000-memory.dmp

          Filesize

          92KB

          Download

        • memory/924-85-0x000007FEF6750000-0x000007FEF68C8000-memory.dmp

          Filesize

          1.5MB

          Download

        • memory/924-79-0x000007FEF70C0000-0x000007FEF70D8000-memory.dmp

          Filesize

          96KB

          Download

        • memory/924-71-0x000007FEF5150000-0x000007FEF61FB000-memory.dmp

          Filesize

          16.7MB

          Download

        • memory/924-76-0x000007FEF7120000-0x000007FEF7131000-memory.dmp

          Filesize

          68KB

          Download

        • memory/924-75-0x000007FEF7140000-0x000007FEF7151000-memory.dmp

          Filesize

          68KB

          Download

        • memory/924-74-0x000007FEF7160000-0x000007FEF7171000-memory.dmp

          Filesize

          68KB

          Download

        • memory/924-73-0x000007FEF7180000-0x000007FEF7198000-memory.dmp

          Filesize

          96KB

          Download

        • memory/924-72-0x000007FEFAE60000-0x000007FEFAE81000-memory.dmp

          Filesize

          132KB

          Download

        • memory/924-104-0x000007FEF4D30000-0x000007FEF4F7B000-memory.dmp

          Filesize

          2.3MB

          Download

        • memory/924-106-0x000007FEF3560000-0x000007FEF3575000-memory.dmp

          Filesize

          84KB

          Download

        • memory/924-111-0x000007FEF31D0000-0x000007FEF32C4000-memory.dmp

          Filesize

          976KB

          Download

        • memory/924-112-0x000007FEF31A0000-0x000007FEF31CA000-memory.dmp

          Filesize

          168KB

          Download

        • memory/924-113-0x000007FEF3180000-0x000007FEF3193000-memory.dmp

          Filesize

          76KB

          Download

        • memory/924-115-0x000007FEF3140000-0x000007FEF3152000-memory.dmp

          Filesize

          72KB

          Download

        • memory/924-116-0x000007FEF3120000-0x000007FEF3135000-memory.dmp

          Filesize

          84KB

          Download

        • memory/924-117-0x000007FEF3100000-0x000007FEF3113000-memory.dmp

          Filesize

          76KB

          Download

        • memory/924-114-0x000007FEF3160000-0x000007FEF317B000-memory.dmp

          Filesize

          108KB

          Download

        • memory/924-120-0x000007FEF30A0000-0x000007FEF30B5000-memory.dmp

          Filesize

          84KB

          Download

        • memory/924-121-0x000007FEF3080000-0x000007FEF3095000-memory.dmp

          Filesize

          84KB

          Download

        • memory/924-122-0x000007FEF3060000-0x000007FEF3071000-memory.dmp

          Filesize

          68KB

          Download

        • memory/924-119-0x000007FEF30C0000-0x000007FEF30D2000-memory.dmp

          Filesize

          72KB

          Download

        • memory/924-118-0x000007FEF30E0000-0x000007FEF30F4000-memory.dmp

          Filesize

          80KB

          Download

        • memory/924-110-0x000007FEF32D0000-0x000007FEF32E3000-memory.dmp

          Filesize

          76KB

          Download

        • memory/924-109-0x000007FEF32F0000-0x000007FEF3313000-memory.dmp

          Filesize

          140KB

          Download

        • memory/924-108-0x000007FEF3320000-0x000007FEF3335000-memory.dmp

          Filesize

          84KB

          Download

        • memory/924-107-0x000007FEF3340000-0x000007FEF355D000-memory.dmp

          Filesize

          2.1MB

          Download

        • memory/924-105-0x000007FEF3580000-0x000007FEF4D30000-memory.dmp

          Filesize

          23.7MB

          Download