Overview

overview

7

Static

static

7

ItsOnFire.apk

android-9-x86

ItsOnFire.apk

android-10-x64

ItsOnFire.apk

android-11-x64

1

baseline.prof

windows7-x64

3

baseline.prof

windows10-2004-x64

3

baseline.profm

windows7-x64

3

baseline.profm

windows10-2004-x64

3

damageshelter.ogg

windows7-x64

1

damageshelter.ogg

windows10-2004-x64

7

invaderexplode.ogg

windows7-x64

1

invaderexplode.ogg

windows10-2004-x64

7

oh.ogg

windows7-x64

1

oh.ogg

windows10-2004-x64

7

playerexplode.ogg

windows7-x64

1

playerexplode.ogg

windows10-2004-x64

7

shoot.ogg

windows7-x64

1

shoot.ogg

windows10-2004-x64

7

uh.ogg

windows7-x64

1

uh.ogg

windows10-2004-x64

7

Resubmissions

03/10/2023, 14:56

231003-sbdm7scb8z 7

03/10/2023, 14:35

231003-rx4abadf82 7

02/10/2023, 22:39

231002-2k417afa8s 7

02/10/2023, 21:20

231002-z68v6aeg3z 7

Analysis

  • max time kernel
    141s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    02/10/2023, 22:39

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    shoot.ogg

  • Size

    43KB

  • MD5

    ef629770d6b4871e9bb640d164cb201d

  • SHA1

    8c8bef0e4195df67bff3692bdd50154d25a8b3fc

  • SHA256

    649f7c795519e022479451575ca0fa064e5479d0b484c8deb2a82cfb9034eae3

  • SHA512

    0923bc22009234839ea8410ccd3922aef7733df1f5c1403255c854c8dc21234d0fd4c2bee2327f7a302cbbf1e3c0c043e41d92a4dc3532d10fb2f3303e1aa4e5

  • SSDEEP

    768:66zL8fIoH4zjb4nHbAM5Tn/eJHIkUx1IAdvErAMKr9ZgAk+Khy2:66z8I34n7X5T/FrGhow7l

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 9 IoCs
  • Suspicious use of SendNotifyMessage 8 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\shoot.ogg"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:1840

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1840-5-0x000000013F9D0000-0x000000013FAC8000-memory.dmp

    Filesize

    992KB

    Download

  • memory/1840-6-0x000007FEFB120000-0x000007FEFB154000-memory.dmp

    Filesize

    208KB

    Download

  • memory/1840-7-0x000007FEF64B0000-0x000007FEF6764000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/1840-8-0x000007FEFBF20000-0x000007FEFBF38000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1840-9-0x000007FEFB440000-0x000007FEFB457000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1840-10-0x000007FEFB3C0000-0x000007FEFB3D1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-11-0x000007FEFB100000-0x000007FEFB117000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1840-12-0x000007FEF7BF0000-0x000007FEF7C01000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-13-0x000007FEF7A40000-0x000007FEF7A5D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/1840-14-0x000007FEF6E00000-0x000007FEF6E11000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-15-0x000007FEF5400000-0x000007FEF64AB000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/1840-16-0x000007FEF5200000-0x000007FEF5400000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1840-20-0x000007FEF51C0000-0x000007FEF51D1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-19-0x000007FEF51E0000-0x000007FEF51F8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1840-18-0x000007FEF6D90000-0x000007FEF6DB1000-memory.dmp

    Filesize

    132KB

    Download

  • memory/1840-17-0x000007FEF6DC0000-0x000007FEF6DFF000-memory.dmp

    Filesize

    252KB

    Download

  • memory/1840-22-0x000007FEF5180000-0x000007FEF5191000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-21-0x000007FEF51A0000-0x000007FEF51B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-24-0x000007FEF5140000-0x000007FEF5151000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-23-0x000007FEF5160000-0x000007FEF517B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/1840-25-0x000007FEF5120000-0x000007FEF5138000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1840-29-0x000007FEF4FF0000-0x000007FEF5001000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-28-0x000007FEF5010000-0x000007FEF507F000-memory.dmp

    Filesize

    444KB

    Download

  • memory/1840-27-0x000007FEF5080000-0x000007FEF50E7000-memory.dmp

    Filesize

    412KB

    Download

  • memory/1840-26-0x000007FEF50F0000-0x000007FEF5120000-memory.dmp

    Filesize

    192KB

    Download

  • memory/1840-30-0x000007FEF4F90000-0x000007FEF4FEC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/1840-31-0x000007FEF4F30000-0x000007FEF4F86000-memory.dmp

    Filesize

    344KB

    Download

  • memory/1840-32-0x000007FEF4F00000-0x000007FEF4F28000-memory.dmp

    Filesize

    160KB

    Download

  • memory/1840-33-0x000007FEF4ED0000-0x000007FEF4EF4000-memory.dmp

    Filesize

    144KB

    Download

  • memory/1840-34-0x000007FEF4EB0000-0x000007FEF4EC7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1840-38-0x000007FEF4E10000-0x000007FEF4E31000-memory.dmp

    Filesize

    132KB

    Download

  • memory/1840-39-0x000007FEF4DF0000-0x000007FEF4E03000-memory.dmp

    Filesize

    76KB

    Download

  • memory/1840-37-0x000007FEF4E40000-0x000007FEF4E52000-memory.dmp

    Filesize

    72KB

    Download

  • memory/1840-36-0x000007FEF4E60000-0x000007FEF4E71000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-40-0x000007FEF4C70000-0x000007FEF4DE8000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/1840-46-0x000007FEF4BC0000-0x000007FEF4BD5000-memory.dmp

    Filesize

    84KB

    Download

  • memory/1840-45-0x000007FEF4BE0000-0x000007FEF4BF6000-memory.dmp

    Filesize

    88KB

    Download

  • memory/1840-48-0x000007FEF4B60000-0x000007FEF4B72000-memory.dmp

    Filesize

    72KB

    Download

  • memory/1840-47-0x000007FEF4B80000-0x000007FEF4B91000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-44-0x000007FEF4C00000-0x000007FEF4C11000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-43-0x000007FEF4C20000-0x000007FEF4C4F000-memory.dmp

    Filesize

    188KB

    Download

  • memory/1840-42-0x000007FEFB4A0000-0x000007FEFB4B0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1840-41-0x000007FEF4C50000-0x000007FEF4C67000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1840-35-0x000007FEF4E80000-0x000007FEF4EA3000-memory.dmp

    Filesize

    140KB

    Download

  • memory/1840-49-0x000007FEF49E0000-0x000007FEF4B5A000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/1840-50-0x000007FEF49C0000-0x000007FEF49D3000-memory.dmp

    Filesize

    76KB

    Download

  • memory/1840-55-0x000007FEF4920000-0x000007FEF4936000-memory.dmp

    Filesize

    88KB

    Download

  • memory/1840-54-0x000007FEF4940000-0x000007FEF4951000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-53-0x000007FEF4960000-0x000007FEF4971000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-52-0x000007FEF4980000-0x000007FEF4991000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1840-51-0x000007FEF49A0000-0x000007FEF49B4000-memory.dmp

    Filesize

    80KB

    Download