Overview

overview

7

Static

static

7

Geometry_D....5.apk

android-9-x86

1

AchievementsDesc.xml

windows7-x64

1

AchievementsDesc.xml

windows10-2004-x64

1

Achievemen...MD.xml

windows7-x64

1

Achievemen...MD.xml

windows10-2004-x64

1

Achievemen...sc.xml

windows7-x64

1

Achievemen...sc.xml

windows10-2004-x64

1

BE_Export_File-hd.png

windows7-x64

3

BE_Export_File-hd.png

windows10-2004-x64

3

BE_Export_...hd.png

windows7-x64

3

BE_Export_...hd.png

windows10-2004-x64

3

BE_Export_File.png

windows7-x64

3

BE_Export_File.png

windows10-2004-x64

3

BE_Import_File-hd.png

windows7-x64

3

BE_Import_File-hd.png

windows10-2004-x64

3

BE_Import_...hd.png

windows7-x64

3

BE_Import_...hd.png

windows10-2004-x64

3

BE_Import_File.png

windows7-x64

3

BE_Import_File.png

windows10-2004-x64

3

BackOnTrack.mp3

windows7-x64

1

BackOnTrack.mp3

windows10-2004-x64

6

BaseAfterBase.mp3

windows7-x64

1

BaseAfterBase.mp3

windows10-2004-x64

6

BlackSludg....plist

windows7-x64

3

BlackSludg....plist

windows10-2004-x64

3

BlastProcessing.mp3

windows7-x64

1

BlastProcessing.mp3

windows10-2004-x64

1

CCControlC...hd.xml

windows7-x64

1

CCControlC...hd.xml

windows10-2004-x64

1

CCControlC...et.xml

windows7-x64

1

CCControlC...et.xml

windows10-2004-x64

1

CCControlC...et.png

windows7-x64

3

Analysis

  • max time kernel
    152s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    08/10/2023, 00:49

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    BackOnTrack.mp3

  • Size

    1.3MB

  • MD5

    815d221afd1744bd11028c3be3387a82

  • SHA1

    c434ea61c76e90586ceb9734dea377188ff00c40

  • SHA256

    d5970a5845f2986ef00404aced65bf583c8ea95fa68be70a2542eaac765d5edf

  • SHA512

    578473f3eea875f8bb53bfa451ac6eb951e2b5facc787ebe7b678800b9d7f40f9b1f5b8bb5417cd73659f880d35b431a9acbcdb3ee5e97014a8019de55b5ebc4

  • SSDEEP

    24576:L0K/R5r5fwPRwSGTS5vuA5P03ccurXp/yjdKWWQH54aCtTwgF6IpjjGuv:gK/14JwnSw2XAgRo5H88gFfPv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 9 IoCs
  • Suspicious use of SendNotifyMessage 8 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\BackOnTrack.mp3"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:3012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3012-5-0x000000013F290000-0x000000013F388000-memory.dmp

    Filesize

    992KB

    Download

  • memory/3012-6-0x000007FEF82A0000-0x000007FEF82D4000-memory.dmp

    Filesize

    208KB

    Download

  • memory/3012-7-0x000007FEF6110000-0x000007FEF63C4000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/3012-9-0x000007FEFB470000-0x000007FEFB487000-memory.dmp

    Filesize

    92KB

    Download

  • memory/3012-11-0x000007FEF8280000-0x000007FEF8297000-memory.dmp

    Filesize

    92KB

    Download

  • memory/3012-14-0x000007FEF81B0000-0x000007FEF81C1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-13-0x000007FEF81D0000-0x000007FEF81ED000-memory.dmp

    Filesize

    116KB

    Download

  • memory/3012-12-0x000007FEF8260000-0x000007FEF8271000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-10-0x000007FEFB350000-0x000007FEFB361000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-8-0x000007FEFB6B0000-0x000007FEFB6C8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/3012-15-0x000007FEF5F10000-0x000007FEF6110000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/3012-16-0x000007FEF4E60000-0x000007FEF5F0B000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/3012-18-0x000007FEF80D0000-0x000007FEF80F1000-memory.dmp

    Filesize

    132KB

    Download

  • memory/3012-22-0x000007FEF6D10000-0x000007FEF6D21000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-21-0x000007FEF6D30000-0x000007FEF6D41000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-20-0x000007FEF8090000-0x000007FEF80A1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-19-0x000007FEF80B0000-0x000007FEF80C8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/3012-17-0x000007FEF8170000-0x000007FEF81AF000-memory.dmp

    Filesize

    252KB

    Download

  • memory/3012-26-0x000007FEF6820000-0x000007FEF6850000-memory.dmp

    Filesize

    192KB

    Download

  • memory/3012-25-0x000007FEF6C60000-0x000007FEF6C78000-memory.dmp

    Filesize

    96KB

    Download

  • memory/3012-24-0x000007FEF6CD0000-0x000007FEF6CE1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-23-0x000007FEF6CF0000-0x000007FEF6D0B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/3012-27-0x000007FEF67B0000-0x000007FEF6817000-memory.dmp

    Filesize

    412KB

    Download

  • memory/3012-28-0x000007FEF6740000-0x000007FEF67AF000-memory.dmp

    Filesize

    444KB

    Download

  • memory/3012-29-0x000007FEF4E40000-0x000007FEF4E51000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-30-0x000007FEF4E20000-0x000007FEF4E37000-memory.dmp

    Filesize

    92KB

    Download

  • memory/3012-31-0x000007FEF4E00000-0x000007FEF4E11000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-32-0x000007FEF4DA0000-0x000007FEF4DF7000-memory.dmp

    Filesize

    348KB

    Download

  • memory/3012-33-0x000007FEF4D70000-0x000007FEF4D9F000-memory.dmp

    Filesize

    188KB

    Download

  • memory/3012-35-0x000007FEF4D30000-0x000007FEF4D41000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-34-0x000007FEF4D50000-0x000007FEF4D63000-memory.dmp

    Filesize

    76KB

    Download

  • memory/3012-38-0x000007FEF4C20000-0x000007FEF4C31000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-39-0x000007FEF4C00000-0x000007FEF4C14000-memory.dmp

    Filesize

    80KB

    Download

  • memory/3012-37-0x000007FEF4C40000-0x000007FEF4C52000-memory.dmp

    Filesize

    72KB

    Download

  • memory/3012-36-0x000007FEF4C60000-0x000007FEF4D25000-memory.dmp

    Filesize

    788KB

    Download

  • memory/3012-40-0x000007FEF4BE0000-0x000007FEF4BF2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/3012-42-0x000007FEF4BA0000-0x000007FEF4BBE000-memory.dmp

    Filesize

    120KB

    Download

  • memory/3012-41-0x000007FEF4BC0000-0x000007FEF4BD4000-memory.dmp

    Filesize

    80KB

    Download

  • memory/3012-45-0x000007FEF4B40000-0x000007FEF4B54000-memory.dmp

    Filesize

    80KB

    Download

  • memory/3012-46-0x000007FEF4B10000-0x000007FEF4B3C000-memory.dmp

    Filesize

    176KB

    Download

  • memory/3012-44-0x000007FEF4B60000-0x000007FEF4B75000-memory.dmp

    Filesize

    84KB

    Download

  • memory/3012-47-0x000007FEF4AF0000-0x000007FEF4B02000-memory.dmp

    Filesize

    72KB

    Download

  • memory/3012-49-0x000007FEF4AA0000-0x000007FEF4AB7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/3012-48-0x000007FEF4AC0000-0x000007FEF4AF0000-memory.dmp

    Filesize

    192KB

    Download

  • memory/3012-43-0x000007FEF4B80000-0x000007FEF4B96000-memory.dmp

    Filesize

    88KB

    Download

  • memory/3012-50-0x000007FEF32F0000-0x000007FEF4AA0000-memory.dmp

    Filesize

    23.7MB

    Download

  • memory/3012-51-0x000007FEF32D0000-0x000007FEF32E1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-52-0x000007FEF32B0000-0x000007FEF32C2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/3012-53-0x000007FEF3130000-0x000007FEF32A8000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/3012-55-0x000007FEF30B0000-0x000007FEF3106000-memory.dmp

    Filesize

    344KB

    Download

  • memory/3012-56-0x000007FEF3080000-0x000007FEF30A8000-memory.dmp

    Filesize

    160KB

    Download

  • memory/3012-54-0x000007FEF3110000-0x000007FEF3127000-memory.dmp

    Filesize

    92KB

    Download

  • memory/3012-57-0x000007FEF3050000-0x000007FEF3074000-memory.dmp

    Filesize

    144KB

    Download

  • memory/3012-58-0x000007FEFB6F0000-0x000007FEFB700000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3012-59-0x000007FEF3030000-0x000007FEF3046000-memory.dmp

    Filesize

    88KB

    Download

  • memory/3012-60-0x000007FEF2FB0000-0x000007FEF3025000-memory.dmp

    Filesize

    468KB

    Download

  • memory/3012-61-0x000007FEF2F40000-0x000007FEF2FA2000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3012-62-0x000007FEF2ED0000-0x000007FEF2F3D000-memory.dmp

    Filesize

    436KB

    Download

  • memory/3012-63-0x000007FEF2EB0000-0x000007FEF2EC5000-memory.dmp

    Filesize

    84KB

    Download

  • memory/3012-64-0x000007FEF2E70000-0x000007FEF2E81000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3012-65-0x000007FEF2E50000-0x000007FEF2E62000-memory.dmp

    Filesize

    72KB

    Download

  • memory/3012-66-0x000007FEF2CD0000-0x000007FEF2E4A000-memory.dmp

    Filesize

    1.5MB

    Download