b7e59768071d2e1fa278737c39770d2c712cc4c7c9a631c42ae06b7acd4f679a

Analysis

max time kernel
166s
max time network
141s
platform
windows7_x64
resource
win7-20230831-en
resource tags

arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
submitted
08/10/2023, 00:49

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

BlastProcessing.mp3
Size

1.5MB
MD5

0f18c41b77b7dde56142216c1a7380b9
SHA1

f9c9f1ce75cd46b57f67695b155910855c9bdee4
SHA256

ee20a9c12bcb12f5068c4e360706f6c7835424da12481ce85af392d46e501501
SHA512

a1e832363fe6c4bc56f67e10f05d9de745a2bfdfe259db88fcb883d73afe25e3a64242df403aa4b2990a0eff0baa36d2829d5f73a5353acd6b963262769f84ae
SSDEEP

24576:0ILyJUxiOrzxftW9ooe0fk6L3NgDL2gRQGxLD3tyFz8oCljgiSlPrZR:0nJUQOrZa+iNpglxLLkFXJPlv

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
1644	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
1644	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	1644	vlc.exe
Token: SeIncBasePriorityPrivilege	1644	vlc.exe

Suspicious use of FindShellTrayWindow 8 IoCs

pid	Process
1644	vlc.exe
1644	vlc.exe
1644	vlc.exe
1644	vlc.exe
1644	vlc.exe
1644	vlc.exe
1644	vlc.exe
1644	vlc.exe

Suspicious use of SendNotifyMessage 7 IoCs

pid	Process
1644	vlc.exe
1644	vlc.exe
1644	vlc.exe
1644	vlc.exe
1644	vlc.exe
1644	vlc.exe
1644	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1644	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\BlastProcessing.mp3"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:1644

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1644-6-0x000007FEFAC00000-0x000007FEFAC34000-memory.dmp

Filesize
208KB

Download
memory/1644-5-0x000000013F160000-0x000000013F258000-memory.dmp

Filesize
992KB

Download
memory/1644-7-0x000007FEF6010000-0x000007FEF62C4000-memory.dmp

Filesize
2.7MB

Download
memory/1644-9-0x000007FEFAF60000-0x000007FEFAF77000-memory.dmp

Filesize
92KB

Download
memory/1644-10-0x000007FEFA6E0000-0x000007FEFA6F1000-memory.dmp

Filesize
68KB

Download
memory/1644-8-0x000007FEFB4C0000-0x000007FEFB4D8000-memory.dmp

Filesize
96KB

Download
memory/1644-11-0x000007FEFA6C0000-0x000007FEFA6D7000-memory.dmp

Filesize
92KB

Download
memory/1644-12-0x000007FEF6A10000-0x000007FEF6A21000-memory.dmp

Filesize
68KB

Download
memory/1644-13-0x000007FEF69F0000-0x000007FEF6A0D000-memory.dmp

Filesize
116KB

Download
memory/1644-14-0x000007FEF69D0000-0x000007FEF69E1000-memory.dmp

Filesize
68KB

Download
memory/1644-15-0x000007FEF5E10000-0x000007FEF6010000-memory.dmp

Filesize
2.0MB

Download
memory/1644-16-0x000007FEF5DD0000-0x000007FEF5E0F000-memory.dmp

Filesize
252KB

Download
memory/1644-18-0x000007FEF69A0000-0x000007FEF69C1000-memory.dmp

Filesize
132KB

Download
memory/1644-17-0x000007FEF4D20000-0x000007FEF5DCB000-memory.dmp

Filesize
16.7MB

Download
memory/1644-19-0x000007FEF6560000-0x000007FEF6578000-memory.dmp

Filesize
96KB

Download
memory/1644-20-0x000007FEF4D00000-0x000007FEF4D11000-memory.dmp

Filesize
68KB

Download
memory/1644-27-0x000007FEF4BC0000-0x000007FEF4C27000-memory.dmp

Filesize
412KB

Download
memory/1644-26-0x000007FEF4C30000-0x000007FEF4C60000-memory.dmp

Filesize
192KB

Download
memory/1644-25-0x000007FEF4C60000-0x000007FEF4C78000-memory.dmp

Filesize
96KB

Download
memory/1644-29-0x000007FEF4B30000-0x000007FEF4B41000-memory.dmp

Filesize
68KB

Download
memory/1644-28-0x000007FEF4B50000-0x000007FEF4BBF000-memory.dmp

Filesize
444KB

Download
memory/1644-30-0x000007FEF4B10000-0x000007FEF4B27000-memory.dmp

Filesize
92KB

Download
memory/1644-24-0x000007FEF4C80000-0x000007FEF4C91000-memory.dmp

Filesize
68KB

Download
memory/1644-31-0x000007FEF4AF0000-0x000007FEF4B01000-memory.dmp

Filesize
68KB

Download
memory/1644-23-0x000007FEF4CA0000-0x000007FEF4CBB000-memory.dmp

Filesize
108KB

Download
memory/1644-22-0x000007FEF4CC0000-0x000007FEF4CD1000-memory.dmp

Filesize
68KB

Download
memory/1644-21-0x000007FEF4CE0000-0x000007FEF4CF1000-memory.dmp

Filesize
68KB

Download
memory/1644-34-0x000007FEF4A40000-0x000007FEF4A53000-memory.dmp

Filesize
76KB

Download
memory/1644-36-0x000007FEF4950000-0x000007FEF4A15000-memory.dmp

Filesize
788KB

Download
memory/1644-35-0x000007FEF4A20000-0x000007FEF4A31000-memory.dmp

Filesize
68KB

Download
memory/1644-33-0x000007FEF4A60000-0x000007FEF4A8F000-memory.dmp

Filesize
188KB

Download
memory/1644-32-0x000007FEF4A90000-0x000007FEF4AE7000-memory.dmp

Filesize
348KB

Download
memory/1644-37-0x000007FEF4930000-0x000007FEF4942000-memory.dmp

Filesize
72KB

Download
memory/1644-39-0x000007FEF48F0000-0x000007FEF4904000-memory.dmp

Filesize
80KB

Download
memory/1644-38-0x000007FEF4910000-0x000007FEF4921000-memory.dmp

Filesize
68KB

Download
memory/1644-40-0x000007FEF48D0000-0x000007FEF48E2000-memory.dmp

Filesize
72KB

Download
memory/1644-41-0x000007FEF48B0000-0x000007FEF48C4000-memory.dmp

Filesize
80KB

Download
memory/1644-45-0x000007FEF4830000-0x000007FEF4844000-memory.dmp

Filesize
80KB

Download
memory/1644-44-0x000007FEF4850000-0x000007FEF4865000-memory.dmp

Filesize
84KB

Download
memory/1644-46-0x000007FEF4800000-0x000007FEF482C000-memory.dmp

Filesize
176KB

Download
memory/1644-43-0x000007FEF4870000-0x000007FEF4886000-memory.dmp

Filesize
88KB

Download
memory/1644-42-0x000007FEF4890000-0x000007FEF48AE000-memory.dmp

Filesize
120KB

Download
memory/1644-48-0x000007FEF47B0000-0x000007FEF47E0000-memory.dmp

Filesize
192KB

Download
memory/1644-49-0x000007FEF4790000-0x000007FEF47A7000-memory.dmp

Filesize
92KB

Download
memory/1644-47-0x000007FEF47E0000-0x000007FEF47F2000-memory.dmp

Filesize
72KB

Download
memory/1644-50-0x000007FEF2FE0000-0x000007FEF4790000-memory.dmp

Filesize
23.7MB

Download
memory/1644-51-0x000007FEF2FC0000-0x000007FEF2FD1000-memory.dmp

Filesize
68KB

Download
memory/1644-52-0x000007FEF2FA0000-0x000007FEF2FB2000-memory.dmp

Filesize
72KB

Download
memory/1644-53-0x000007FEF2E20000-0x000007FEF2F98000-memory.dmp

Filesize
1.5MB

Download
memory/1644-56-0x000007FEF2D70000-0x000007FEF2D98000-memory.dmp

Filesize
160KB

Download
memory/1644-60-0x000007FEF2CA0000-0x000007FEF2D15000-memory.dmp

Filesize
468KB

Download
memory/1644-59-0x000007FEF2D20000-0x000007FEF2D36000-memory.dmp

Filesize
88KB

Download
memory/1644-61-0x000007FEF2C30000-0x000007FEF2C92000-memory.dmp

Filesize
392KB

Download
memory/1644-58-0x000007FEFB000000-0x000007FEFB010000-memory.dmp

Filesize
64KB

Download
memory/1644-57-0x000007FEF2D40000-0x000007FEF2D64000-memory.dmp

Filesize
144KB

Download
memory/1644-55-0x000007FEF2DA0000-0x000007FEF2DF6000-memory.dmp

Filesize
344KB

Download
memory/1644-54-0x000007FEF2E00000-0x000007FEF2E17000-memory.dmp

Filesize
92KB

Download
memory/1644-62-0x000007FEF2BC0000-0x000007FEF2C2D000-memory.dmp

Filesize
436KB

Download
memory/1644-65-0x000007FEF2B40000-0x000007FEF2B52000-memory.dmp

Filesize
72KB

Download
memory/1644-64-0x000007FEF2B80000-0x000007FEF2B91000-memory.dmp

Filesize
68KB

Download
memory/1644-63-0x000007FEF2BA0000-0x000007FEF2BB5000-memory.dmp

Filesize
84KB

Download
memory/1644-66-0x000007FEF29C0000-0x000007FEF2B3A000-memory.dmp

Filesize
1.5MB

Download