ac0f683632e27a7ea2f6ee14c27e76073881842ed81cc6b961ac1f274515360a

Analysis

max time kernel
145s
max time network
128s
platform
windows7_x64
resource
win7-20230712-en
resource tags

arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
submitted
10-07-2023 23:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Sploot/Sploot/Sploot/audio/squish.mp3
Size

10KB
MD5

4fc993bc50aed6983b32a32edcba00c2
SHA1

67fdef546ddcad71c0cdd6320e7b2dc6a19b0a8f
SHA256

9350b30eb1bd8c0b479918cc8a162dd66665cf3015faf044fa1607e51d752a90
SHA512

578237669e47a2be735e045a00d10e5d380ec07c6204e908e616762faa2da48cc20eef8cfc189618e0e93ce719c8d73954cb3ba2b3a5784af92766b0e94b6c9d
SSDEEP

192:3jN6i3NDOLeB8cvCO3oa/rCV3jB/CRKlRcUpDKzNCPWuJtsw8Tm:zwi35OL6xvDTUB/CmHQz9q8Tm

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
2192	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2192	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	2192	vlc.exe
Token: SeIncBasePriorityPrivilege	2192	vlc.exe

Suspicious use of FindShellTrayWindow 9 IoCs

pid	Process
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe

Suspicious use of SendNotifyMessage 8 IoCs

pid	Process
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe
2192	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2192	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Sploot\Sploot\Sploot\audio\squish.mp3"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:2192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2192-54-0x000000013F610000-0x000000013F708000-memory.dmp

Filesize
992KB

Download
memory/2192-55-0x000007FEF7DE0000-0x000007FEF7E14000-memory.dmp

Filesize
208KB

Download
memory/2192-56-0x000007FEF5F70000-0x000007FEF6224000-memory.dmp

Filesize
2.7MB

Download
memory/2192-57-0x000007FEFB690000-0x000007FEFB6A8000-memory.dmp

Filesize
96KB

Download
memory/2192-58-0x000007FEF7EA0000-0x000007FEF7EB7000-memory.dmp

Filesize
92KB

Download
memory/2192-60-0x000007FEF7DA0000-0x000007FEF7DB7000-memory.dmp

Filesize
92KB

Download
memory/2192-59-0x000007FEF7DC0000-0x000007FEF7DD1000-memory.dmp

Filesize
68KB

Download
memory/2192-61-0x000007FEF7D80000-0x000007FEF7D91000-memory.dmp

Filesize
68KB

Download
memory/2192-62-0x000007FEF7D60000-0x000007FEF7D7D000-memory.dmp

Filesize
116KB

Download
memory/2192-63-0x000007FEF7D40000-0x000007FEF7D51000-memory.dmp

Filesize
68KB

Download
memory/2192-64-0x000007FEF5D70000-0x000007FEF5F70000-memory.dmp

Filesize
2.0MB

Download
memory/2192-65-0x000007FEF6B30000-0x000007FEF6B6F000-memory.dmp

Filesize
252KB

Download
memory/2192-66-0x000007FEF4CC0000-0x000007FEF5D6B000-memory.dmp

Filesize
16.7MB

Download
memory/2192-67-0x000007FEF6B00000-0x000007FEF6B21000-memory.dmp

Filesize
132KB

Download
memory/2192-68-0x000007FEF6CB0000-0x000007FEF6CC8000-memory.dmp

Filesize
96KB

Download
memory/2192-76-0x000007FEF5F70000-0x000007FEF6224000-memory.dmp

Filesize
2.7MB

Download
memory/2192-86-0x000007FEF4CC0000-0x000007FEF5D6B000-memory.dmp

Filesize
16.7MB

Download
memory/2192-89-0x000007FEF6AE0000-0x000007FEF6AF1000-memory.dmp

Filesize
68KB

Download
memory/2192-90-0x000007FEF6740000-0x000007FEF6751000-memory.dmp

Filesize
68KB

Download
memory/2192-91-0x000007FEF6720000-0x000007FEF6731000-memory.dmp

Filesize
68KB

Download
memory/2192-92-0x000007FEF6700000-0x000007FEF671B000-memory.dmp

Filesize
108KB

Download
memory/2192-93-0x000007FEF6690000-0x000007FEF66A1000-memory.dmp

Filesize
68KB

Download
memory/2192-94-0x000007FEF6670000-0x000007FEF6688000-memory.dmp

Filesize
96KB

Download
memory/2192-95-0x000007FEF6640000-0x000007FEF6670000-memory.dmp

Filesize
192KB

Download
memory/2192-96-0x000007FEF65D0000-0x000007FEF6637000-memory.dmp

Filesize
412KB

Download
memory/2192-97-0x000007FEF4C50000-0x000007FEF4CBF000-memory.dmp

Filesize
444KB

Download
memory/2192-99-0x000007FEF4C30000-0x000007FEF4C47000-memory.dmp

Filesize
92KB

Download
memory/2192-98-0x000007FEF65B0000-0x000007FEF65C1000-memory.dmp

Filesize
68KB

Download
memory/2192-100-0x000007FEF4BD0000-0x000007FEF4C26000-memory.dmp

Filesize
344KB

Download
memory/2192-101-0x000007FEF4BA0000-0x000007FEF4BC8000-memory.dmp

Filesize
160KB

Download
memory/2192-102-0x000007FEF4B70000-0x000007FEF4B94000-memory.dmp

Filesize
144KB

Download
memory/2192-103-0x000007FEF4B40000-0x000007FEF4B63000-memory.dmp

Filesize
140KB

Download
memory/2192-106-0x000007FEF4AD0000-0x000007FEF4AF1000-memory.dmp

Filesize
132KB

Download
memory/2192-105-0x000007FEF4B00000-0x000007FEF4B12000-memory.dmp

Filesize
72KB

Download
memory/2192-104-0x000007FEF4B20000-0x000007FEF4B31000-memory.dmp

Filesize
68KB

Download
memory/2192-107-0x000007FEF4AB0000-0x000007FEF4AC3000-memory.dmp

Filesize
76KB

Download
memory/2192-108-0x000007FEF4A90000-0x000007FEF4AA2000-memory.dmp

Filesize
72KB

Download
memory/2192-109-0x000007FEF4950000-0x000007FEF4A8B000-memory.dmp

Filesize
1.2MB

Download
memory/2192-110-0x000007FEF4920000-0x000007FEF494C000-memory.dmp

Filesize
176KB

Download
memory/2192-111-0x000007FEF4760000-0x000007FEF4912000-memory.dmp

Filesize
1.7MB

Download
memory/2192-114-0x000007FEF4640000-0x000007FEF46D7000-memory.dmp

Filesize
604KB

Download
memory/2192-113-0x000007FEF46E0000-0x000007FEF46F1000-memory.dmp

Filesize
68KB

Download
memory/2192-112-0x000007FEF4700000-0x000007FEF475C000-memory.dmp

Filesize
368KB

Download
memory/2192-115-0x000007FEF4620000-0x000007FEF4632000-memory.dmp

Filesize
72KB

Download
memory/2192-116-0x000007FEF43E0000-0x000007FEF4611000-memory.dmp

Filesize
2.2MB

Download
memory/2192-117-0x000007FEF43A0000-0x000007FEF43D5000-memory.dmp

Filesize
212KB

Download
memory/2192-118-0x000007FEF4370000-0x000007FEF4395000-memory.dmp

Filesize
148KB

Download
memory/2192-120-0x000007FEF42E0000-0x000007FEF4341000-memory.dmp

Filesize
388KB

Download
memory/2192-119-0x000007FEF4350000-0x000007FEF4361000-memory.dmp

Filesize
68KB

Download
memory/2192-122-0x000007FEF42A0000-0x000007FEF42B2000-memory.dmp

Filesize
72KB

Download
memory/2192-121-0x000007FEF42C0000-0x000007FEF42D1000-memory.dmp

Filesize
68KB

Download