ac0f683632e27a7ea2f6ee14c27e76073881842ed81cc6b961ac1f274515360a

Analysis

max time kernel
143s
max time network
131s
platform
windows7_x64
resource
win7-20230712-en
resource tags

arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
submitted
10-07-2023 23:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Sploot/Sploot/Sploot/audio/slap2.mp3
Size

12KB
MD5

ee14dc709b6cce964384973f2ac0e532
SHA1

fc5d82d1f531637d73a3b8328523899a1d1db85b
SHA256

87f43fbc7f49a9b535c34248a5911fd8c4cb9726a510350e49b32d58f87a716c
SHA512

ce9c64a82ba0e146e4608683b25d8b653e2376bc8b03060e20c57f7959f906cc5ba687a3d606186baa120954a88c9558df0e7886ec08cd9fa6af143a6aed4c62
SSDEEP

384:78VwILvNFbF4Od3vbwvxnx+dGy0xpv4wRwkLW3:gVwmDSOBT48Y5jNL2

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
2344	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2344	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	2344	vlc.exe
Token: SeIncBasePriorityPrivilege	2344	vlc.exe

Suspicious use of FindShellTrayWindow 9 IoCs

pid	Process
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe

Suspicious use of SendNotifyMessage 8 IoCs

pid	Process
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe
2344	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2344	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Sploot\Sploot\Sploot\audio\slap2.mp3"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:2344

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2344-59-0x000000013FFC0000-0x00000001400B8000-memory.dmp

Filesize
992KB

Download
memory/2344-60-0x000007FEF8030000-0x000007FEF8064000-memory.dmp

Filesize
208KB

Download
memory/2344-61-0x000007FEF65C0000-0x000007FEF6874000-memory.dmp

Filesize
2.7MB

Download
memory/2344-62-0x000007FEFBE10000-0x000007FEFBE28000-memory.dmp

Filesize
96KB

Download
memory/2344-63-0x000007FEFB8D0000-0x000007FEFB8E7000-memory.dmp

Filesize
92KB

Download
memory/2344-64-0x000007FEF80D0000-0x000007FEF80E1000-memory.dmp

Filesize
68KB

Download
memory/2344-65-0x000007FEF8010000-0x000007FEF8027000-memory.dmp

Filesize
92KB

Download
memory/2344-66-0x000007FEF7FF0000-0x000007FEF8001000-memory.dmp

Filesize
68KB

Download
memory/2344-67-0x000007FEF7FD0000-0x000007FEF7FED000-memory.dmp

Filesize
116KB

Download
memory/2344-68-0x000007FEF7E60000-0x000007FEF7E71000-memory.dmp

Filesize
68KB

Download
memory/2344-69-0x000007FEF63C0000-0x000007FEF65C0000-memory.dmp

Filesize
2.0MB

Download
memory/2344-70-0x000007FEF7300000-0x000007FEF733F000-memory.dmp

Filesize
252KB

Download
memory/2344-71-0x000007FEF72D0000-0x000007FEF72F1000-memory.dmp

Filesize
132KB

Download
memory/2344-72-0x000007FEF7E40000-0x000007FEF7E58000-memory.dmp

Filesize
96KB

Download
memory/2344-73-0x000007FEF5310000-0x000007FEF63BB000-memory.dmp

Filesize
16.7MB

Download
memory/2344-74-0x000007FEF72B0000-0x000007FEF72C1000-memory.dmp

Filesize
68KB

Download
memory/2344-75-0x000007FEF6CE0000-0x000007FEF6CF1000-memory.dmp

Filesize
68KB

Download
memory/2344-76-0x000007FEF6CC0000-0x000007FEF6CD1000-memory.dmp

Filesize
68KB

Download
memory/2344-77-0x000007FEF6CA0000-0x000007FEF6CBB000-memory.dmp

Filesize
108KB

Download
memory/2344-78-0x000007FEF6C80000-0x000007FEF6C91000-memory.dmp

Filesize
68KB

Download
memory/2344-79-0x000007FEF6C60000-0x000007FEF6C78000-memory.dmp

Filesize
96KB

Download
memory/2344-80-0x000007FEF6C30000-0x000007FEF6C60000-memory.dmp

Filesize
192KB

Download
memory/2344-81-0x000007FEF52A0000-0x000007FEF5307000-memory.dmp

Filesize
412KB

Download
memory/2344-82-0x000007FEF5230000-0x000007FEF529F000-memory.dmp

Filesize
444KB

Download
memory/2344-83-0x000007FEF6C10000-0x000007FEF6C21000-memory.dmp

Filesize
68KB

Download
memory/2344-84-0x000007FEF6BF0000-0x000007FEF6C07000-memory.dmp

Filesize
92KB

Download
memory/2344-85-0x000007FEF5210000-0x000007FEF5221000-memory.dmp

Filesize
68KB

Download
memory/2344-86-0x000007FEF51B0000-0x000007FEF5207000-memory.dmp

Filesize
348KB

Download
memory/2344-87-0x000007FEF5180000-0x000007FEF51AF000-memory.dmp

Filesize
188KB

Download
memory/2344-88-0x000007FEF5160000-0x000007FEF5173000-memory.dmp

Filesize
76KB

Download
memory/2344-89-0x000007FEF5140000-0x000007FEF5151000-memory.dmp

Filesize
68KB

Download
memory/2344-90-0x000007FEF5070000-0x000007FEF5135000-memory.dmp

Filesize
788KB

Download
memory/2344-91-0x000007FEF5050000-0x000007FEF5062000-memory.dmp

Filesize
72KB

Download
memory/2344-92-0x000007FEF5030000-0x000007FEF5041000-memory.dmp

Filesize
68KB

Download
memory/2344-93-0x000007FEF5010000-0x000007FEF5024000-memory.dmp

Filesize
80KB

Download
memory/2344-94-0x000007FEF4FF0000-0x000007FEF5002000-memory.dmp

Filesize
72KB

Download
memory/2344-95-0x000007FEF4FD0000-0x000007FEF4FE4000-memory.dmp

Filesize
80KB

Download
memory/2344-96-0x000007FEF4FB0000-0x000007FEF4FCE000-memory.dmp

Filesize
120KB

Download
memory/2344-97-0x000007FEF4F90000-0x000007FEF4FA6000-memory.dmp

Filesize
88KB

Download
memory/2344-98-0x000007FEF4F70000-0x000007FEF4F85000-memory.dmp

Filesize
84KB

Download
memory/2344-99-0x000007FEF4F50000-0x000007FEF4F64000-memory.dmp

Filesize
80KB

Download
memory/2344-100-0x000007FEF4F20000-0x000007FEF4F4C000-memory.dmp

Filesize
176KB

Download
memory/2344-101-0x000007FEF4F00000-0x000007FEF4F12000-memory.dmp

Filesize
72KB

Download
memory/2344-102-0x000007FEF4ED0000-0x000007FEF4F00000-memory.dmp

Filesize
192KB

Download
memory/2344-103-0x000007FEF4EB0000-0x000007FEF4EC7000-memory.dmp

Filesize
92KB

Download
memory/2344-104-0x000007FEF3700000-0x000007FEF4EB0000-memory.dmp

Filesize
23.7MB

Download
memory/2344-105-0x000007FEF36E0000-0x000007FEF36F1000-memory.dmp

Filesize
68KB

Download
memory/2344-106-0x000007FEF36C0000-0x000007FEF36D2000-memory.dmp

Filesize
72KB

Download
memory/2344-107-0x000007FEF3540000-0x000007FEF36B8000-memory.dmp

Filesize
1.5MB

Download
memory/2344-108-0x000007FEF3520000-0x000007FEF3537000-memory.dmp

Filesize
92KB

Download
memory/2344-109-0x000007FEF34C0000-0x000007FEF3516000-memory.dmp

Filesize
344KB

Download
memory/2344-110-0x000007FEF3490000-0x000007FEF34B8000-memory.dmp

Filesize
160KB

Download
memory/2344-111-0x000007FEF3460000-0x000007FEF3484000-memory.dmp

Filesize
144KB

Download
memory/2344-112-0x000007FEF80C0000-0x000007FEF80D0000-memory.dmp

Filesize
64KB

Download
memory/2344-113-0x000007FEF3440000-0x000007FEF3456000-memory.dmp

Filesize
88KB

Download
memory/2344-114-0x000007FEF33C0000-0x000007FEF3435000-memory.dmp

Filesize
468KB

Download
memory/2344-115-0x000007FEF3350000-0x000007FEF33B2000-memory.dmp

Filesize
392KB

Download
memory/2344-116-0x000007FEF32E0000-0x000007FEF334D000-memory.dmp

Filesize
436KB

Download
memory/2344-117-0x000007FEF32C0000-0x000007FEF32D5000-memory.dmp

Filesize
84KB

Download
memory/2344-118-0x000007FEF3280000-0x000007FEF3291000-memory.dmp

Filesize
68KB

Download
memory/2344-119-0x000007FEF3260000-0x000007FEF3272000-memory.dmp

Filesize
72KB

Download
memory/2344-120-0x000007FEF30E0000-0x000007FEF325A000-memory.dmp

Filesize
1.5MB

Download