ac0f683632e27a7ea2f6ee14c27e76073881842ed81cc6b961ac1f274515360a

Analysis

max time kernel
142s
max time network
127s
platform
windows7_x64
resource
win7-20230712-en
resource tags

arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
submitted
10/07/2023, 23:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Sploot/Sploot/Sploot/audio/Moe Shop - Notice.mp3
Size

2.9MB
MD5

6ea3b1f09e0350e13f6a25cff1b4d54a
SHA1

79e4744ad93bc9fd90146966378e6f9c3e4dc4bf
SHA256

5a77f62f8ccae93f8e9c3a8028e057a122d3e66c6f112c416a4208fd852f874f
SHA512

957a9e98ad86bc768d314cc4c5d3d09afb6da067a5d31a7c4075ad484d7aa271c1504332ac9860b796c70df3305f54ed3dab01a166dc8758db03b2c182806b1f
SSDEEP

49152:PxT1vz1XSQ4hdwtOCcAKnpiH+ag4rX6NVIuXR1vpDhGAuQYu9pFXr4O2Fhz:Zl5PoLaKn8yEfoRlp1GATYuPF7nghz

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
2112	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2112	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	2112	vlc.exe
Token: SeIncBasePriorityPrivilege	2112	vlc.exe

Suspicious use of FindShellTrayWindow 7 IoCs

pid	Process
2112	vlc.exe
2112	vlc.exe
2112	vlc.exe
2112	vlc.exe
2112	vlc.exe
2112	vlc.exe
2112	vlc.exe

Suspicious use of SendNotifyMessage 6 IoCs

pid	Process
2112	vlc.exe
2112	vlc.exe
2112	vlc.exe
2112	vlc.exe
2112	vlc.exe
2112	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2112	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Sploot\Sploot\Sploot\audio\Moe Shop - Notice.mp3"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:2112

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2112-53-0x000000013FDF0000-0x000000013FEE8000-memory.dmp

Filesize
992KB

Download
memory/2112-54-0x000007FEFBA90000-0x000007FEFBAC4000-memory.dmp

Filesize
208KB

Download
memory/2112-55-0x000007FEF6770000-0x000007FEF6A24000-memory.dmp

Filesize
2.7MB

Download
memory/2112-56-0x000007FEFBB00000-0x000007FEFBB18000-memory.dmp

Filesize
96KB

Download
memory/2112-57-0x000007FEFBA70000-0x000007FEFBA87000-memory.dmp

Filesize
92KB

Download
memory/2112-58-0x000007FEF8010000-0x000007FEF8021000-memory.dmp

Filesize
68KB

Download
memory/2112-61-0x000007FEF6770000-0x000007FEF6A24000-memory.dmp

Filesize
2.7MB

Download
memory/2112-66-0x000007FEF7FD0000-0x000007FEF7FE1000-memory.dmp

Filesize
68KB

Download
memory/2112-65-0x000007FEF7FF0000-0x000007FEF8007000-memory.dmp

Filesize
92KB

Download
memory/2112-67-0x000007FEF7FB0000-0x000007FEF7FCD000-memory.dmp

Filesize
116KB

Download
memory/2112-68-0x000007FEF7EC0000-0x000007FEF7ED1000-memory.dmp

Filesize
68KB

Download
memory/2112-69-0x000007FEF6570000-0x000007FEF6770000-memory.dmp

Filesize
2.0MB

Download
memory/2112-70-0x000007FEF54C0000-0x000007FEF656B000-memory.dmp

Filesize
16.7MB

Download
memory/2112-73-0x000007FEF6770000-0x000007FEF6A24000-memory.dmp

Filesize
2.7MB

Download
memory/2112-82-0x000007FEF54C0000-0x000007FEF656B000-memory.dmp

Filesize
16.7MB

Download
memory/2112-83-0x000007FEF7960000-0x000007FEF799F000-memory.dmp

Filesize
252KB

Download
memory/2112-89-0x000007FEF7900000-0x000007FEF7921000-memory.dmp

Filesize
132KB

Download
memory/2112-90-0x000007FEF7D20000-0x000007FEF7D38000-memory.dmp

Filesize
96KB

Download
memory/2112-91-0x000007FEF7940000-0x000007FEF7951000-memory.dmp

Filesize
68KB

Download
memory/2112-92-0x000007FEF74B0000-0x000007FEF74C1000-memory.dmp

Filesize
68KB

Download
memory/2112-93-0x000007FEF7490000-0x000007FEF74A1000-memory.dmp

Filesize
68KB

Download
memory/2112-94-0x000007FEF7470000-0x000007FEF748B000-memory.dmp

Filesize
108KB

Download
memory/2112-98-0x000007FEF7390000-0x000007FEF73F7000-memory.dmp

Filesize
412KB

Download
memory/2112-97-0x000007FEF7400000-0x000007FEF7430000-memory.dmp

Filesize
192KB

Download
memory/2112-96-0x000007FEF7430000-0x000007FEF7448000-memory.dmp

Filesize
96KB

Download
memory/2112-95-0x000007FEF7450000-0x000007FEF7461000-memory.dmp

Filesize
68KB

Download
memory/2112-99-0x000007FEF7320000-0x000007FEF738F000-memory.dmp

Filesize
444KB

Download
memory/2112-101-0x000007FEF6E70000-0x000007FEF6E87000-memory.dmp

Filesize
92KB

Download
memory/2112-100-0x000007FEF6E90000-0x000007FEF6EA1000-memory.dmp

Filesize
68KB

Download
memory/2112-102-0x000007FEF6E10000-0x000007FEF6E66000-memory.dmp

Filesize
344KB

Download
memory/2112-103-0x000007FEF6DE0000-0x000007FEF6E08000-memory.dmp

Filesize
160KB

Download
memory/2112-104-0x000007FEF6DB0000-0x000007FEF6DD4000-memory.dmp

Filesize
144KB

Download
memory/2112-105-0x000007FEF5090000-0x000007FEF50B3000-memory.dmp

Filesize
140KB

Download
memory/2112-106-0x000007FEF5070000-0x000007FEF5081000-memory.dmp

Filesize
68KB

Download
memory/2112-107-0x000007FEF5050000-0x000007FEF5062000-memory.dmp

Filesize
72KB

Download
memory/2112-108-0x000007FEF5020000-0x000007FEF5041000-memory.dmp

Filesize
132KB

Download
memory/2112-109-0x000007FEF5000000-0x000007FEF5013000-memory.dmp

Filesize
76KB

Download
memory/2112-110-0x000007FEF4FE0000-0x000007FEF4FF2000-memory.dmp

Filesize
72KB

Download
memory/2112-111-0x000007FEF4EA0000-0x000007FEF4FDB000-memory.dmp

Filesize
1.2MB

Download
memory/2112-112-0x000007FEF4E70000-0x000007FEF4E9C000-memory.dmp

Filesize
176KB

Download
memory/2112-113-0x000007FEF4CB0000-0x000007FEF4E62000-memory.dmp

Filesize
1.7MB

Download
memory/2112-114-0x000007FEF4C50000-0x000007FEF4CAC000-memory.dmp

Filesize
368KB

Download
memory/2112-115-0x000007FEF4C30000-0x000007FEF4C41000-memory.dmp

Filesize
68KB

Download
memory/2112-116-0x000007FEF4B90000-0x000007FEF4C27000-memory.dmp

Filesize
604KB

Download
memory/2112-117-0x000007FEF4B70000-0x000007FEF4B82000-memory.dmp

Filesize
72KB

Download
memory/2112-118-0x000007FEF4930000-0x000007FEF4B61000-memory.dmp

Filesize
2.2MB

Download
memory/2112-119-0x000007FEF48F0000-0x000007FEF4925000-memory.dmp

Filesize
212KB

Download
memory/2112-121-0x000007FEF48A0000-0x000007FEF48B1000-memory.dmp

Filesize
68KB

Download
memory/2112-120-0x000007FEF48C0000-0x000007FEF48E5000-memory.dmp

Filesize
148KB

Download