Overview

overview

7

Static

static

7

ItsOnFire.apk

android-9-x86

ItsOnFire.apk

android-10-x64

ItsOnFire.apk

android-11-x64

1

baseline.prof

windows7-x64

3

baseline.prof

windows10-2004-x64

3

baseline.profm

windows7-x64

3

baseline.profm

windows10-2004-x64

3

damageshelter.ogg

windows7-x64

1

damageshelter.ogg

windows10-2004-x64

7

invaderexplode.ogg

windows7-x64

1

invaderexplode.ogg

windows10-2004-x64

7

oh.ogg

windows7-x64

1

oh.ogg

windows10-2004-x64

7

playerexplode.ogg

windows7-x64

1

playerexplode.ogg

windows10-2004-x64

7

shoot.ogg

windows7-x64

1

shoot.ogg

windows10-2004-x64

7

uh.ogg

windows7-x64

1

uh.ogg

windows10-2004-x64

7

Resubmissions

03/10/2023, 14:56

231003-sbdm7scb8z 7

03/10/2023, 14:35

231003-rx4abadf82 7

02/10/2023, 22:39

231002-2k417afa8s 7

02/10/2023, 21:20

231002-z68v6aeg3z 7

Analysis

  • max time kernel
    141s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    02/10/2023, 22:39

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    oh.ogg

  • Size

    10KB

  • MD5

    cfe9690ba3e211c18e62c72fd79eef19

  • SHA1

    7abe861a5152f09f9e787e82a1db82a1deac157b

  • SHA256

    18e02aec04c077843b0deee0ffffc2199d413da7e2058c5f121f65bfc184e8c2

  • SHA512

    1beb6ca6ee6026eff9cda637f0cf2694521de95056938d6f142f38d103610d227b1b3e2b13e05e5d1f5cd056d5de54bc86285746a46c613154612994bb98c6b8

  • SSDEEP

    192:umP9hVauKEoLHMb+Etefm0+7UXtztAzyTLu8:umVhmbwbxtm3Zyu

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 8 IoCs
  • Suspicious use of SendNotifyMessage 7 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\oh.ogg"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:2956

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2956-5-0x000000013FE90000-0x000000013FF88000-memory.dmp

    Filesize

    992KB

    Download

  • memory/2956-6-0x000007FEFBA00000-0x000007FEFBA34000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2956-7-0x000007FEF67F0000-0x000007FEF6AA4000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/2956-8-0x000007FEFBDB0000-0x000007FEFBDC8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2956-9-0x000007FEFBAF0000-0x000007FEFBB07000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2956-10-0x000007FEF8020000-0x000007FEF8031000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-11-0x000007FEF8000000-0x000007FEF8017000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2956-12-0x000007FEF7F60000-0x000007FEF7F71000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-14-0x000007FEF7F10000-0x000007FEF7F21000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-13-0x000007FEF7F30000-0x000007FEF7F4D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/2956-15-0x000007FEF5740000-0x000007FEF67EB000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/2956-16-0x000007FEF5540000-0x000007FEF5740000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2956-20-0x000007FEF7510000-0x000007FEF7521000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-25-0x000007FEF73E0000-0x000007FEF73F8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2956-24-0x000007FEF7400000-0x000007FEF7411000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-27-0x000007FEF7340000-0x000007FEF73A7000-memory.dmp

    Filesize

    412KB

    Download

  • memory/2956-26-0x000007FEF73B0000-0x000007FEF73E0000-memory.dmp

    Filesize

    192KB

    Download

  • memory/2956-30-0x000007FEF6E80000-0x000007FEF6EDC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2956-33-0x000007FEF5510000-0x000007FEF5534000-memory.dmp

    Filesize

    144KB

    Download

  • memory/2956-37-0x000007FEF5480000-0x000007FEF5492000-memory.dmp

    Filesize

    72KB

    Download

  • memory/2956-38-0x000007FEF5450000-0x000007FEF5471000-memory.dmp

    Filesize

    132KB

    Download

  • memory/2956-39-0x000007FEF5430000-0x000007FEF5443000-memory.dmp

    Filesize

    76KB

    Download

  • memory/2956-40-0x000007FEF52B0000-0x000007FEF5428000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/2956-43-0x000007FEF5260000-0x000007FEF528F000-memory.dmp

    Filesize

    188KB

    Download

  • memory/2956-46-0x000007FEF5200000-0x000007FEF5215000-memory.dmp

    Filesize

    84KB

    Download

  • memory/2956-48-0x000007FEF51A0000-0x000007FEF51B2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/2956-47-0x000007FEF51C0000-0x000007FEF51D1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-45-0x000007FEF5220000-0x000007FEF5236000-memory.dmp

    Filesize

    88KB

    Download

  • memory/2956-55-0x000007FEF4F60000-0x000007FEF4F76000-memory.dmp

    Filesize

    88KB

    Download

  • memory/2956-54-0x000007FEF4F80000-0x000007FEF4F91000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-53-0x000007FEF4FA0000-0x000007FEF4FB1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-52-0x000007FEF4FC0000-0x000007FEF4FD1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-51-0x000007FEF4FE0000-0x000007FEF4FF4000-memory.dmp

    Filesize

    80KB

    Download

  • memory/2956-50-0x000007FEF5000000-0x000007FEF5013000-memory.dmp

    Filesize

    76KB

    Download

  • memory/2956-49-0x000007FEF5020000-0x000007FEF519A000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/2956-44-0x000007FEF5240000-0x000007FEF5251000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-42-0x000007FEFC2B0000-0x000007FEFC2C0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2956-41-0x000007FEF5290000-0x000007FEF52A7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2956-36-0x000007FEF54A0000-0x000007FEF54B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-35-0x000007FEF54C0000-0x000007FEF54E3000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2956-34-0x000007FEF54F0000-0x000007FEF5507000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2956-32-0x000007FEF72F0000-0x000007FEF7318000-memory.dmp

    Filesize

    160KB

    Download

  • memory/2956-31-0x000007FEF6E20000-0x000007FEF6E76000-memory.dmp

    Filesize

    344KB

    Download

  • memory/2956-29-0x000007FEF7320000-0x000007FEF7331000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-28-0x000007FEF6EE0000-0x000007FEF6F4F000-memory.dmp

    Filesize

    444KB

    Download

  • memory/2956-23-0x000007FEF7420000-0x000007FEF743B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/2956-22-0x000007FEF7440000-0x000007FEF7451000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-21-0x000007FEF7460000-0x000007FEF7471000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2956-19-0x000007FEF7970000-0x000007FEF7988000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2956-18-0x000007FEF7990000-0x000007FEF79B1000-memory.dmp

    Filesize

    132KB

    Download

  • memory/2956-17-0x000007FEF79C0000-0x000007FEF79FF000-memory.dmp

    Filesize

    252KB

    Download