ac0f683632e27a7ea2f6ee14c27e76073881842ed81cc6b961ac1f274515360a

Analysis

max time kernel
141s
max time network
131s
platform
windows7_x64
resource
win7-20230712-en
resource tags

arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
submitted
10/07/2023, 23:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Sploot/Sploot/Sploot/audio/squish2.mp3
Size

6KB
MD5

b219d3afae1f435b0999a121fa7811e6
SHA1

f2204aeba188e186a3f598307b307bbe824578c4
SHA256

3455acf92c16e77b96d244d3c7aa0bf2644ece78728dfa2f6af9724470d077ef
SHA512

81d49a195c510ed5b872b2d7861c1f1b295a0dfb4024e846b640c75dd58841756ddc28db75fc2abb3cd55e6d73403156b2f5bb44d1f5c5b8e3657ec065669b80
SSDEEP

192:ZsMo4/bONHyFswPHG4urowwKVvL9JdCmLXYT/R:Zg7NSF1Ero29JhC

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
2196	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2196	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	2196	vlc.exe
Token: SeIncBasePriorityPrivilege	2196	vlc.exe

Suspicious use of FindShellTrayWindow 9 IoCs

pid	Process
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe

Suspicious use of SendNotifyMessage 8 IoCs

pid	Process
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2196	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Sploot\Sploot\Sploot\audio\squish2.mp3"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:2196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2196-59-0x000000013F1F0000-0x000000013F2E8000-memory.dmp

Filesize
992KB

Download
memory/2196-60-0x000007FEF72A0000-0x000007FEF72D4000-memory.dmp

Filesize
208KB

Download
memory/2196-61-0x000007FEF58A0000-0x000007FEF5B54000-memory.dmp

Filesize
2.7MB

Download
memory/2196-62-0x000007FEFAF80000-0x000007FEFAF98000-memory.dmp

Filesize
96KB

Download
memory/2196-63-0x000007FEF7390000-0x000007FEF73A7000-memory.dmp

Filesize
92KB

Download
memory/2196-64-0x000007FEF7320000-0x000007FEF7331000-memory.dmp

Filesize
68KB

Download
memory/2196-65-0x000007FEF7280000-0x000007FEF7297000-memory.dmp

Filesize
92KB

Download
memory/2196-66-0x000007FEF7260000-0x000007FEF7271000-memory.dmp

Filesize
68KB

Download
memory/2196-67-0x000007FEF7240000-0x000007FEF725D000-memory.dmp

Filesize
116KB

Download
memory/2196-68-0x000007FEF70E0000-0x000007FEF70F1000-memory.dmp

Filesize
68KB

Download
memory/2196-69-0x000007FEF47F0000-0x000007FEF589B000-memory.dmp

Filesize
16.7MB

Download
memory/2196-70-0x000007FEF45F0000-0x000007FEF47F0000-memory.dmp

Filesize
2.0MB

Download
memory/2196-71-0x000007FEF6570000-0x000007FEF65AF000-memory.dmp

Filesize
252KB

Download
memory/2196-72-0x000007FEF70B0000-0x000007FEF70D1000-memory.dmp

Filesize
132KB

Download
memory/2196-73-0x000007FEF6B20000-0x000007FEF6B38000-memory.dmp

Filesize
96KB

Download
memory/2196-74-0x000007FEF6550000-0x000007FEF6561000-memory.dmp

Filesize
68KB

Download
memory/2196-75-0x000007FEF6530000-0x000007FEF6541000-memory.dmp

Filesize
68KB

Download
memory/2196-76-0x000007FEF5FC0000-0x000007FEF5FD1000-memory.dmp

Filesize
68KB

Download
memory/2196-77-0x000007FEF5FA0000-0x000007FEF5FBB000-memory.dmp

Filesize
108KB

Download
memory/2196-78-0x000007FEF5F80000-0x000007FEF5F91000-memory.dmp

Filesize
68KB

Download
memory/2196-79-0x000007FEF5F60000-0x000007FEF5F78000-memory.dmp

Filesize
96KB

Download
memory/2196-80-0x000007FEF5F30000-0x000007FEF5F60000-memory.dmp

Filesize
192KB

Download
memory/2196-83-0x000007FEF5F10000-0x000007FEF5F21000-memory.dmp

Filesize
68KB

Download
memory/2196-82-0x000007FEF4510000-0x000007FEF457F000-memory.dmp

Filesize
444KB

Download
memory/2196-81-0x000007FEF4580000-0x000007FEF45E7000-memory.dmp

Filesize
412KB

Download
memory/2196-84-0x000007FEF5EF0000-0x000007FEF5F07000-memory.dmp

Filesize
92KB

Download
memory/2196-85-0x000007FEF5ED0000-0x000007FEF5EE1000-memory.dmp

Filesize
68KB

Download
memory/2196-86-0x000007FEF44B0000-0x000007FEF4507000-memory.dmp

Filesize
348KB

Download
memory/2196-87-0x000007FEF4480000-0x000007FEF44AF000-memory.dmp

Filesize
188KB

Download
memory/2196-88-0x000007FEF4460000-0x000007FEF4473000-memory.dmp

Filesize
76KB

Download
memory/2196-89-0x000007FEF4440000-0x000007FEF4451000-memory.dmp

Filesize
68KB

Download
memory/2196-90-0x000007FEF4370000-0x000007FEF4435000-memory.dmp

Filesize
788KB

Download
memory/2196-91-0x000007FEF4350000-0x000007FEF4362000-memory.dmp

Filesize
72KB

Download
memory/2196-92-0x000007FEF4330000-0x000007FEF4341000-memory.dmp

Filesize
68KB

Download
memory/2196-93-0x000007FEF4310000-0x000007FEF4324000-memory.dmp

Filesize
80KB

Download
memory/2196-94-0x000007FEF42F0000-0x000007FEF4302000-memory.dmp

Filesize
72KB

Download
memory/2196-95-0x000007FEF42D0000-0x000007FEF42E4000-memory.dmp

Filesize
80KB

Download
memory/2196-96-0x000007FEF42B0000-0x000007FEF42CE000-memory.dmp

Filesize
120KB

Download
memory/2196-97-0x000007FEF4290000-0x000007FEF42A6000-memory.dmp

Filesize
88KB

Download
memory/2196-98-0x000007FEF4270000-0x000007FEF4285000-memory.dmp

Filesize
84KB

Download
memory/2196-99-0x000007FEF4250000-0x000007FEF4264000-memory.dmp

Filesize
80KB

Download
memory/2196-100-0x000007FEF4220000-0x000007FEF424C000-memory.dmp

Filesize
176KB

Download
memory/2196-101-0x000007FEF4200000-0x000007FEF4212000-memory.dmp

Filesize
72KB

Download
memory/2196-102-0x000007FEF41D0000-0x000007FEF4200000-memory.dmp

Filesize
192KB

Download
memory/2196-103-0x000007FEF41B0000-0x000007FEF41C7000-memory.dmp

Filesize
92KB

Download
memory/2196-104-0x000007FEF2A00000-0x000007FEF41B0000-memory.dmp

Filesize
23.7MB

Download
memory/2196-106-0x000007FEF29C0000-0x000007FEF29D2000-memory.dmp

Filesize
72KB

Download
memory/2196-105-0x000007FEF29E0000-0x000007FEF29F1000-memory.dmp

Filesize
68KB

Download
memory/2196-107-0x000007FEF2840000-0x000007FEF29B8000-memory.dmp

Filesize
1.5MB

Download
memory/2196-108-0x000007FEF2820000-0x000007FEF2837000-memory.dmp

Filesize
92KB

Download
memory/2196-110-0x000007FEF2790000-0x000007FEF27B8000-memory.dmp

Filesize
160KB

Download
memory/2196-109-0x000007FEF27C0000-0x000007FEF2816000-memory.dmp

Filesize
344KB

Download
memory/2196-111-0x000007FEF2760000-0x000007FEF2784000-memory.dmp

Filesize
144KB

Download
memory/2196-113-0x000007FEF2740000-0x000007FEF2756000-memory.dmp

Filesize
88KB

Download
memory/2196-112-0x000007FEFABC0000-0x000007FEFABD0000-memory.dmp

Filesize
64KB

Download
memory/2196-117-0x000007FEF25C0000-0x000007FEF25D5000-memory.dmp

Filesize
84KB

Download
memory/2196-116-0x000007FEF25E0000-0x000007FEF264D000-memory.dmp

Filesize
436KB

Download
memory/2196-115-0x000007FEF2650000-0x000007FEF26B2000-memory.dmp

Filesize
392KB

Download
memory/2196-114-0x000007FEF26C0000-0x000007FEF2735000-memory.dmp

Filesize
468KB

Download
memory/2196-119-0x000007FEF2560000-0x000007FEF2572000-memory.dmp

Filesize
72KB

Download
memory/2196-118-0x000007FEF2580000-0x000007FEF2591000-memory.dmp

Filesize
68KB

Download
memory/2196-120-0x000007FEF23E0000-0x000007FEF255A000-memory.dmp

Filesize
1.5MB

Download
memory/2196-121-0x000007FEF23C0000-0x000007FEF23D3000-memory.dmp

Filesize
76KB

Download
memory/2196-122-0x000007FEF23A0000-0x000007FEF23B4000-memory.dmp

Filesize
80KB

Download