ac0f683632e27a7ea2f6ee14c27e76073881842ed81cc6b961ac1f274515360a

Analysis

max time kernel
141s
max time network
130s
platform
windows7_x64
resource
win7-20230712-en
resource tags

arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
submitted
10-07-2023 23:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Sploot/Sploot/Sploot/audio/wetslap.mp3
Size

3KB
MD5

f3f5b6f9041044dc4fdfad1f0a2214d1
SHA1

1c1892b8c14bc093c38de1e7e4ed2ee51e4d8e8c
SHA256

cc422df7d67585f9c075a02ad587bf7ece96eccd2831a36fe475aa1b75507def
SHA512

2d3c3c9e3a21c39ccfea8b3dc12e6ba6f0fd48fa79f4e0f46e72cf446ba9579f987c57f667699f7700749d017bbd1796ea86f74dbf60eea5d0474c960db7256a

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
2396	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2396	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	2396	vlc.exe
Token: SeIncBasePriorityPrivilege	2396	vlc.exe

Suspicious use of FindShellTrayWindow 9 IoCs

pid	Process
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe

Suspicious use of SendNotifyMessage 8 IoCs

pid	Process
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe
2396	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2396	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Sploot\Sploot\Sploot\audio\wetslap.mp3"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:2396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2396-58-0x000000013FB80000-0x000000013FC78000-memory.dmp

Filesize
992KB

Download
memory/2396-59-0x000007FEF7AC0000-0x000007FEF7AF4000-memory.dmp

Filesize
208KB

Download
memory/2396-60-0x000007FEF6050000-0x000007FEF6304000-memory.dmp

Filesize
2.7MB

Download
memory/2396-61-0x000007FEFBE10000-0x000007FEFBE28000-memory.dmp

Filesize
96KB

Download
memory/2396-62-0x000007FEF7B60000-0x000007FEF7B77000-memory.dmp

Filesize
92KB

Download
memory/2396-63-0x000007FEF7AA0000-0x000007FEF7AB1000-memory.dmp

Filesize
68KB

Download
memory/2396-65-0x000007FEF7A60000-0x000007FEF7A71000-memory.dmp

Filesize
68KB

Download
memory/2396-64-0x000007FEF7A80000-0x000007FEF7A97000-memory.dmp

Filesize
92KB

Download
memory/2396-66-0x000007FEF78F0000-0x000007FEF790D000-memory.dmp

Filesize
116KB

Download
memory/2396-67-0x000007FEF78D0000-0x000007FEF78E1000-memory.dmp

Filesize
68KB

Download
memory/2396-68-0x000007FEF5E50000-0x000007FEF6050000-memory.dmp

Filesize
2.0MB

Download
memory/2396-69-0x000007FEF4DA0000-0x000007FEF5E4B000-memory.dmp

Filesize
16.7MB

Download
memory/2396-70-0x000007FEF6D90000-0x000007FEF6DCF000-memory.dmp

Filesize
252KB

Download
memory/2396-71-0x000007FEF7330000-0x000007FEF7351000-memory.dmp

Filesize
132KB

Download
memory/2396-72-0x000007FEF6D70000-0x000007FEF6D88000-memory.dmp

Filesize
96KB

Download
memory/2396-73-0x000007FEF6D50000-0x000007FEF6D61000-memory.dmp

Filesize
68KB

Download
memory/2396-75-0x000007FEF6AE0000-0x000007FEF6AF1000-memory.dmp

Filesize
68KB

Download
memory/2396-74-0x000007FEF6B00000-0x000007FEF6B11000-memory.dmp

Filesize
68KB

Download
memory/2396-76-0x000007FEF6AC0000-0x000007FEF6ADB000-memory.dmp

Filesize
108KB

Download
memory/2396-80-0x000007FEF66B0000-0x000007FEF6717000-memory.dmp

Filesize
412KB

Download
memory/2396-79-0x000007FEF6720000-0x000007FEF6750000-memory.dmp

Filesize
192KB

Download
memory/2396-78-0x000007FEF6750000-0x000007FEF6768000-memory.dmp

Filesize
96KB

Download
memory/2396-77-0x000007FEF6770000-0x000007FEF6781000-memory.dmp

Filesize
68KB

Download
memory/2396-84-0x000007FEF4CF0000-0x000007FEF4D01000-memory.dmp

Filesize
68KB

Download
memory/2396-83-0x000007FEF4D10000-0x000007FEF4D27000-memory.dmp

Filesize
92KB

Download
memory/2396-82-0x000007FEF6690000-0x000007FEF66A1000-memory.dmp

Filesize
68KB

Download
memory/2396-81-0x000007FEF4D30000-0x000007FEF4D9F000-memory.dmp

Filesize
444KB

Download
memory/2396-88-0x000007FEF4C20000-0x000007FEF4C31000-memory.dmp

Filesize
68KB

Download
memory/2396-87-0x000007FEF4C40000-0x000007FEF4C53000-memory.dmp

Filesize
76KB

Download
memory/2396-86-0x000007FEF4C60000-0x000007FEF4C8F000-memory.dmp

Filesize
188KB

Download
memory/2396-85-0x000007FEF4C90000-0x000007FEF4CE7000-memory.dmp

Filesize
348KB

Download
memory/2396-91-0x000007FEF4B10000-0x000007FEF4B21000-memory.dmp

Filesize
68KB

Download
memory/2396-90-0x000007FEF4B30000-0x000007FEF4B42000-memory.dmp

Filesize
72KB

Download
memory/2396-89-0x000007FEF4B50000-0x000007FEF4C15000-memory.dmp

Filesize
788KB

Download
memory/2396-92-0x000007FEF4AF0000-0x000007FEF4B04000-memory.dmp

Filesize
80KB

Download
memory/2396-97-0x000007FEF4A50000-0x000007FEF4A65000-memory.dmp

Filesize
84KB

Download
memory/2396-96-0x000007FEF4A70000-0x000007FEF4A86000-memory.dmp

Filesize
88KB

Download
memory/2396-95-0x000007FEF4A90000-0x000007FEF4AAE000-memory.dmp

Filesize
120KB

Download
memory/2396-94-0x000007FEF4AB0000-0x000007FEF4AC4000-memory.dmp

Filesize
80KB

Download
memory/2396-93-0x000007FEF4AD0000-0x000007FEF4AE2000-memory.dmp

Filesize
72KB

Download
memory/2396-98-0x000007FEF4A30000-0x000007FEF4A44000-memory.dmp

Filesize
80KB

Download
memory/2396-99-0x000007FEF4A00000-0x000007FEF4A2C000-memory.dmp

Filesize
176KB

Download
memory/2396-100-0x000007FEF49E0000-0x000007FEF49F2000-memory.dmp

Filesize
72KB

Download
memory/2396-101-0x000007FEF49B0000-0x000007FEF49E0000-memory.dmp

Filesize
192KB

Download
memory/2396-102-0x000007FEF4990000-0x000007FEF49A7000-memory.dmp

Filesize
92KB

Download
memory/2396-105-0x000007FEF31A0000-0x000007FEF31B2000-memory.dmp

Filesize
72KB

Download
memory/2396-104-0x000007FEF31C0000-0x000007FEF31D1000-memory.dmp

Filesize
68KB

Download
memory/2396-103-0x000007FEF31E0000-0x000007FEF4990000-memory.dmp

Filesize
23.7MB

Download
memory/2396-106-0x000007FEF3020000-0x000007FEF3198000-memory.dmp

Filesize
1.5MB

Download
memory/2396-107-0x000007FEF3000000-0x000007FEF3017000-memory.dmp

Filesize
92KB

Download
memory/2396-108-0x000007FEF2FA0000-0x000007FEF2FF6000-memory.dmp

Filesize
344KB

Download
memory/2396-116-0x000007FEF2DA0000-0x000007FEF2DB5000-memory.dmp

Filesize
84KB

Download
memory/2396-115-0x000007FEF2DC0000-0x000007FEF2E2D000-memory.dmp

Filesize
436KB

Download
memory/2396-114-0x000007FEF2E30000-0x000007FEF2E92000-memory.dmp

Filesize
392KB

Download
memory/2396-113-0x000007FEF2EA0000-0x000007FEF2F15000-memory.dmp

Filesize
468KB

Download
memory/2396-112-0x000007FEF2F20000-0x000007FEF2F36000-memory.dmp

Filesize
88KB

Download
memory/2396-111-0x000007FEF7B50000-0x000007FEF7B60000-memory.dmp

Filesize
64KB

Download
memory/2396-110-0x000007FEF2F40000-0x000007FEF2F64000-memory.dmp

Filesize
144KB

Download
memory/2396-109-0x000007FEF2F70000-0x000007FEF2F98000-memory.dmp

Filesize
160KB

Download
memory/2396-117-0x000007FEF2D60000-0x000007FEF2D71000-memory.dmp

Filesize
68KB

Download
memory/2396-118-0x000007FEF2D40000-0x000007FEF2D52000-memory.dmp

Filesize
72KB

Download
memory/2396-120-0x000007FEF2BA0000-0x000007FEF2BB3000-memory.dmp

Filesize
76KB

Download
memory/2396-121-0x000007FEF2B80000-0x000007FEF2B94000-memory.dmp

Filesize
80KB

Download
memory/2396-119-0x000007FEF2BC0000-0x000007FEF2D3A000-memory.dmp

Filesize
1.5MB

Download