4b6419a46d9acb50c0831be1dcb0e73e646b5a1e7193ec3340fd7f8ab1e46d1e

Analysis

max time kernel
145s
max time network
50s
platform
windows7_x64
resource
win7-20230712-en
resource tags

arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
submitted
31/07/2023, 22:36

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

assets/sounds/ANGRY_TEXT_BOX.ogg
Size

38KB
MD5

a201afa607bfa0751caecc71406e844d
SHA1

ba9f7ac6ffdd53641f133450438a135b7ec8a380
SHA256

3c056a4dac4c1286dc083b7a7872e8658211f43089fd2216f3c23da7e97ef56c
SHA512

6a7f40fdffd9ac1bec1559c932273dc6196085c861a042c5d3ed6149ca1a20a2ba6c1d397b03a516328effad0b3c07dae762e8be1228b8284afaa130aecbe2bc
SSDEEP

768:laTWqgzbz2kG170Sp/9ZaVjwn70Vs1Lbu+Wzw9DSbZeZS:GWqQzFGFtvewnYwxvJqV

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
2448	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2448	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	2448	vlc.exe
Token: SeIncBasePriorityPrivilege	2448	vlc.exe

Suspicious use of FindShellTrayWindow 8 IoCs

pid	Process
2448	vlc.exe
2448	vlc.exe
2448	vlc.exe
2448	vlc.exe
2448	vlc.exe
2448	vlc.exe
2448	vlc.exe
2448	vlc.exe

Suspicious use of SendNotifyMessage 7 IoCs

pid	Process
2448	vlc.exe
2448	vlc.exe
2448	vlc.exe
2448	vlc.exe
2448	vlc.exe
2448	vlc.exe
2448	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2448	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\assets\sounds\ANGRY_TEXT_BOX.ogg"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:2448

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2448-59-0x000000013F760000-0x000000013F858000-memory.dmp

Filesize
992KB

Download
memory/2448-60-0x000007FEF77E0000-0x000007FEF7814000-memory.dmp

Filesize
208KB

Download
memory/2448-61-0x000007FEF5D40000-0x000007FEF5FF4000-memory.dmp

Filesize
2.7MB

Download
memory/2448-62-0x000007FEFB7F0000-0x000007FEFB808000-memory.dmp

Filesize
96KB

Download
memory/2448-63-0x000007FEF7860000-0x000007FEF7877000-memory.dmp

Filesize
92KB

Download
memory/2448-65-0x000007FEF6F30000-0x000007FEF6F47000-memory.dmp

Filesize
92KB

Download
memory/2448-64-0x000007FEF7780000-0x000007FEF7791000-memory.dmp

Filesize
68KB

Download
memory/2448-66-0x000007FEF6A10000-0x000007FEF6A21000-memory.dmp

Filesize
68KB

Download
memory/2448-67-0x000007FEF69F0000-0x000007FEF6A0D000-memory.dmp

Filesize
116KB

Download
memory/2448-68-0x000007FEF5B40000-0x000007FEF5D40000-memory.dmp

Filesize
2.0MB

Download
memory/2448-69-0x000007FEF69D0000-0x000007FEF69E1000-memory.dmp

Filesize
68KB

Download
memory/2448-70-0x000007FEF6520000-0x000007FEF655F000-memory.dmp

Filesize
252KB

Download
memory/2448-71-0x000007FEF64F0000-0x000007FEF6511000-memory.dmp

Filesize
132KB

Download
memory/2448-72-0x000007FEF6460000-0x000007FEF6478000-memory.dmp

Filesize
96KB

Download
memory/2448-73-0x000007FEF6440000-0x000007FEF6451000-memory.dmp

Filesize
68KB

Download
memory/2448-74-0x000007FEF6420000-0x000007FEF6431000-memory.dmp

Filesize
68KB

Download
memory/2448-75-0x000007FEF6400000-0x000007FEF6411000-memory.dmp

Filesize
68KB

Download
memory/2448-76-0x000007FEF63E0000-0x000007FEF63FB000-memory.dmp

Filesize
108KB

Download
memory/2448-77-0x000007FEF4A90000-0x000007FEF5B3B000-memory.dmp

Filesize
16.7MB

Download
memory/2448-78-0x000007FEF63C0000-0x000007FEF63D1000-memory.dmp

Filesize
68KB

Download
memory/2448-79-0x000007FEF63A0000-0x000007FEF63B8000-memory.dmp

Filesize
96KB

Download
memory/2448-80-0x000007FEF6370000-0x000007FEF63A0000-memory.dmp

Filesize
192KB

Download
memory/2448-81-0x000007FEF4A20000-0x000007FEF4A87000-memory.dmp

Filesize
412KB

Download
memory/2448-82-0x000007FEF49B0000-0x000007FEF4A1F000-memory.dmp

Filesize
444KB

Download
memory/2448-83-0x000007FEF4990000-0x000007FEF49A1000-memory.dmp

Filesize
68KB

Download
memory/2448-84-0x000007FEF4930000-0x000007FEF498C000-memory.dmp

Filesize
368KB

Download
memory/2448-85-0x000007FEF47B0000-0x000007FEF4928000-memory.dmp

Filesize
1.5MB

Download
memory/2448-86-0x000007FEF4790000-0x000007FEF47A7000-memory.dmp

Filesize
92KB

Download
memory/2448-87-0x000007FEFB040000-0x000007FEFB050000-memory.dmp

Filesize
64KB

Download
memory/2448-88-0x000007FEF4760000-0x000007FEF478F000-memory.dmp

Filesize
188KB

Download
memory/2448-89-0x000007FEF4740000-0x000007FEF4751000-memory.dmp

Filesize
68KB

Download
memory/2448-90-0x000007FEF4720000-0x000007FEF4736000-memory.dmp

Filesize
88KB

Download
memory/2448-91-0x000007FEF4650000-0x000007FEF4715000-memory.dmp

Filesize
788KB

Download
memory/2448-93-0x000007FEF45F0000-0x000007FEF4601000-memory.dmp

Filesize
68KB

Download
memory/2448-94-0x000007FEF45D0000-0x000007FEF45E2000-memory.dmp

Filesize
72KB

Download
memory/2448-92-0x000007FEF4630000-0x000007FEF4645000-memory.dmp

Filesize
84KB

Download
memory/2448-95-0x000007FEF4450000-0x000007FEF45CA000-memory.dmp

Filesize
1.5MB

Download
memory/2448-97-0x000007FEF4410000-0x000007FEF4424000-memory.dmp

Filesize
80KB

Download
memory/2448-99-0x000007FEF43D0000-0x000007FEF43E1000-memory.dmp

Filesize
68KB

Download
memory/2448-98-0x000007FEF43F0000-0x000007FEF4401000-memory.dmp

Filesize
68KB

Download
memory/2448-100-0x000007FEF43B0000-0x000007FEF43C1000-memory.dmp

Filesize
68KB

Download
memory/2448-96-0x000007FEF4430000-0x000007FEF4443000-memory.dmp

Filesize
76KB

Download