Overview

overview

7

Static

static

1

Betflix-4....m).apk

android-9-x86

7

Betflix-4....m).apk

android-11-x64

7

CaviarDreams.ttf

windows7-x64

3

CaviarDreams.ttf

windows10-2004-x64

7

Pacifico.ttf

windows7-x64

3

Pacifico.ttf

windows10-2004-x64

7

Sansation-Regular.ttf

windows7-x64

3

Sansation-Regular.ttf

windows10-2004-x64

7

Walkway_Bold.ttf

windows7-x64

3

Walkway_Bold.ttf

windows10-2004-x64

7

audience_network.dex

windows7-x64

3

audience_network.dex

windows10-2004-x64

3

crear_tran...n.html

windows7-x64

1

crear_tran...n.html

windows10-2004-x64

1

sound2.wav

windows7-x64

1

sound2.wav

windows10-2004-x64

6

sound3.wav

windows7-x64

1

sound3.wav

windows10-2004-x64

6

sound4.wav

windows7-x64

1

sound4.wav

windows10-2004-x64

6

sound5.wav

windows7-x64

1

sound5.wav

windows10-2004-x64

6

sound_out2.wav

windows7-x64

1

sound_out2.wav

windows10-2004-x64

6

sound_out3.wav

windows7-x64

1

sound_out3.wav

windows10-2004-x64

6

sound_out4.wav

windows7-x64

1

sound_out4.wav

windows10-2004-x64

6

sound_out5.wav

windows7-x64

1

sound_out5.wav

windows10-2004-x64

6

Analysis

  • max time kernel
    141s
  • max time network
    34s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    09-06-2023 18:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sound5.wav

  • Size

    21KB

  • MD5

    5366c619d04e7661479450c2e8ce2601

  • SHA1

    45ab4a5754e3ee59ca79ce6f3105e0cc4a4b4da3

  • SHA256

    554ea70fab38bbcda2a77a7e9b58739ab0749fdd1b88071a0beae7d4e698bff8

  • SHA512

    9fa779ea7755107ab4489e81f0563f631bf16359ffe8d396672988d993ac6747923dc5898e0ea927d05d977870a97a841d1c92506fb4a28a779d5c138fd4cbf7

  • SSDEEP

    384:O2UuM22wXGXg+dIXKWlir4TG3tF+2pV4zh/a/fm97ubWCCIo+WNEIVvQA:0UIIXZw3m2P4zpa/OluqltxVvQA

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 6 IoCs
  • Suspicious use of FindShellTrayWindow 8 IoCs
  • Suspicious use of SendNotifyMessage 7 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\sound5.wav"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:920
  • C:\Windows\system32\AUDIODG.EXE
    C:\Windows\system32\AUDIODG.EXE 0x144
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1916

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/920-59-0x000000013F550000-0x000000013F648000-memory.dmp
    Filesize

    992KB

    Download
  • memory/920-60-0x000007FEF6710000-0x000007FEF6744000-memory.dmp
    Filesize

    208KB

    Download
  • memory/920-61-0x000007FEF61B0000-0x000007FEF6464000-memory.dmp
    Filesize

    2.7MB

    Download
  • memory/920-62-0x000007FEFB080000-0x000007FEFB098000-memory.dmp
    Filesize

    96KB

    Download
  • memory/920-63-0x000007FEF65C0000-0x000007FEF65D7000-memory.dmp
    Filesize

    92KB

    Download
  • memory/920-64-0x000007FEF65A0000-0x000007FEF65B1000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-65-0x000007FEF6190000-0x000007FEF61A7000-memory.dmp
    Filesize

    92KB

    Download
  • memory/920-66-0x000007FEF6170000-0x000007FEF6181000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-67-0x000007FEF6150000-0x000007FEF616D000-memory.dmp
    Filesize

    116KB

    Download
  • memory/920-68-0x000007FEF6130000-0x000007FEF6141000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-69-0x000007FEF5EC0000-0x000007FEF60C0000-memory.dmp
    Filesize

    2.0MB

    Download
  • memory/920-70-0x000007FEF4E10000-0x000007FEF5EBB000-memory.dmp
    Filesize

    16.7MB

    Download
  • memory/920-71-0x000007FEF4DD0000-0x000007FEF4E0F000-memory.dmp
    Filesize

    252KB

    Download
  • memory/920-72-0x000007FEF6100000-0x000007FEF6121000-memory.dmp
    Filesize

    132KB

    Download
  • memory/920-73-0x000007FEF4DB0000-0x000007FEF4DC8000-memory.dmp
    Filesize

    96KB

    Download
  • memory/920-74-0x000007FEF4D90000-0x000007FEF4DA1000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-75-0x000007FEF4D70000-0x000007FEF4D81000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-76-0x000007FEF4D50000-0x000007FEF4D61000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-77-0x000007FEF4D30000-0x000007FEF4D4B000-memory.dmp
    Filesize

    108KB

    Download
  • memory/920-78-0x000007FEF4D10000-0x000007FEF4D21000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-79-0x000007FEF4CF0000-0x000007FEF4D08000-memory.dmp
    Filesize

    96KB

    Download
  • memory/920-80-0x000007FEF4CC0000-0x000007FEF4CF0000-memory.dmp
    Filesize

    192KB

    Download
  • memory/920-81-0x000007FEF4C50000-0x000007FEF4CB7000-memory.dmp
    Filesize

    412KB

    Download
  • memory/920-82-0x000007FEF4BE0000-0x000007FEF4C4F000-memory.dmp
    Filesize

    444KB

    Download
  • memory/920-83-0x000007FEF4BC0000-0x000007FEF4BD1000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-84-0x000007FEF4B60000-0x000007FEF4BB6000-memory.dmp
    Filesize

    344KB

    Download
  • memory/920-85-0x000007FEF4B30000-0x000007FEF4B58000-memory.dmp
    Filesize

    160KB

    Download
  • memory/920-86-0x000007FEF4B00000-0x000007FEF4B24000-memory.dmp
    Filesize

    144KB

    Download
  • memory/920-87-0x000007FEF4AE0000-0x000007FEF4AF7000-memory.dmp
    Filesize

    92KB

    Download
  • memory/920-88-0x000007FEF4AB0000-0x000007FEF4AD3000-memory.dmp
    Filesize

    140KB

    Download
  • memory/920-89-0x000007FEF4A90000-0x000007FEF4AA1000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-90-0x000007FEF4A70000-0x000007FEF4A82000-memory.dmp
    Filesize

    72KB

    Download
  • memory/920-91-0x000007FEF4A40000-0x000007FEF4A61000-memory.dmp
    Filesize

    132KB

    Download
  • memory/920-92-0x000007FEF4A20000-0x000007FEF4A33000-memory.dmp
    Filesize

    76KB

    Download
  • memory/920-93-0x000007FEF48A0000-0x000007FEF4A18000-memory.dmp
    Filesize

    1.5MB

    Download
  • memory/920-94-0x000007FEF4880000-0x000007FEF4897000-memory.dmp
    Filesize

    92KB

    Download
  • memory/920-95-0x000007FEF7120000-0x000007FEF7130000-memory.dmp
    Filesize

    64KB

    Download
  • memory/920-96-0x000007FEF4850000-0x000007FEF487F000-memory.dmp
    Filesize

    188KB

    Download
  • memory/920-97-0x000007FEF4830000-0x000007FEF4841000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-98-0x000007FEF4810000-0x000007FEF4826000-memory.dmp
    Filesize

    88KB

    Download
  • memory/920-99-0x000007FEF47F0000-0x000007FEF4805000-memory.dmp
    Filesize

    84KB

    Download
  • memory/920-100-0x000007FEF44B0000-0x000007FEF44C1000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-101-0x000007FEF4490000-0x000007FEF44A2000-memory.dmp
    Filesize

    72KB

    Download
  • memory/920-102-0x000007FEF4470000-0x000007FEF4482000-memory.dmp
    Filesize

    72KB

    Download
  • memory/920-103-0x000007FEF42F0000-0x000007FEF446A000-memory.dmp
    Filesize

    1.5MB

    Download
  • memory/920-106-0x000007FEF4290000-0x000007FEF42A1000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-105-0x000007FEF42B0000-0x000007FEF42C4000-memory.dmp
    Filesize

    80KB

    Download
  • memory/920-104-0x000007FEF42D0000-0x000007FEF42E3000-memory.dmp
    Filesize

    76KB

    Download
  • memory/920-107-0x000007FEF4270000-0x000007FEF4281000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-108-0x000007FEF4250000-0x000007FEF4261000-memory.dmp
    Filesize

    68KB

    Download
  • memory/920-109-0x000007FEF4230000-0x000007FEF4246000-memory.dmp
    Filesize

    88KB

    Download