4a08a6514a9bb199cae62c8a6ad799f064c3ed0c933c01eeafa59023b24aa56d

Resubmissions

11/08/2024, 12:15

240811-pfbgvstblg 7

Analysis

max time kernel
50s
max time network
22s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
28/01/2024, 08:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

SMM_WE/snd_DSM_3.ogg
Size

116KB
MD5

4f79e9e0ab0bb8d1f33686705b28102b
SHA1

a55e6f34e3914a6d45a2c46af67df16a59cdbc33
SHA256

1147bfccf2ae5ca3ffd271655a72bb70b4eef8868dba2a431ca80bf9565e3709
SHA512

f7041715624842ff58934e539392f0d660cdad280d92c08bb09d8855ad5266e4836d5233236ea4c9718d18b620444c72ff19f91a9225a8b42636853d190dcc94
SSDEEP

3072:MsTFJjm97sC73hXhE2JTYWTqa8HhyYfCuy1mRIu/:2lrZ5qa8ByYfCuy1mRIO

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
1984	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
1984	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	1984	vlc.exe
Token: SeIncBasePriorityPrivilege	1984	vlc.exe

Suspicious use of FindShellTrayWindow 9 IoCs

pid	Process
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe

Suspicious use of SendNotifyMessage 8 IoCs

pid	Process
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe
1984	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1984	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\SMM_WE\snd_DSM_3.ogg"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:1984

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1984-5-0x000000013FC70000-0x000000013FD68000-memory.dmp

Filesize
992KB

Download
memory/1984-6-0x000007FEFA0F0000-0x000007FEFA124000-memory.dmp

Filesize
208KB

Download
memory/1984-8-0x000007FEFB370000-0x000007FEFB388000-memory.dmp

Filesize
96KB

Download
memory/1984-10-0x000007FEF6FC0000-0x000007FEF6FD1000-memory.dmp

Filesize
68KB

Download
memory/1984-12-0x000007FEF6F80000-0x000007FEF6F91000-memory.dmp

Filesize
68KB

Download
memory/1984-11-0x000007FEF6FA0000-0x000007FEF6FB7000-memory.dmp

Filesize
92KB

Download
memory/1984-14-0x000007FEF6430000-0x000007FEF6441000-memory.dmp

Filesize
68KB

Download
memory/1984-13-0x000007FEF6F60000-0x000007FEF6F7D000-memory.dmp

Filesize
116KB

Download
memory/1984-7-0x000007FEF5760000-0x000007FEF5A16000-memory.dmp

Filesize
2.7MB

Download
memory/1984-9-0x000007FEFA650000-0x000007FEFA667000-memory.dmp

Filesize
92KB

Download
memory/1984-24-0x000007FEF5E90000-0x000007FEF5EA1000-memory.dmp

Filesize
68KB

Download
memory/1984-30-0x000007FEF43C0000-0x000007FEF441C000-memory.dmp

Filesize
368KB

Download
memory/1984-37-0x000007FEF4100000-0x000007FEF41C5000-memory.dmp

Filesize
788KB

Download
memory/1984-45-0x000007FEF3E60000-0x000007FEF3E71000-memory.dmp

Filesize
68KB

Download
memory/1984-40-0x000007FEF3F00000-0x000007FEF407A000-memory.dmp

Filesize
1.5MB

Download
memory/1984-44-0x000007FEF3E80000-0x000007FEF3E91000-memory.dmp

Filesize
68KB

Download
memory/1984-43-0x000007FEF3EA0000-0x000007FEF3EB1000-memory.dmp

Filesize
68KB

Download
memory/1984-42-0x000007FEF3EC0000-0x000007FEF3ED4000-memory.dmp

Filesize
80KB

Download
memory/1984-41-0x000007FEF3EE0000-0x000007FEF3EF3000-memory.dmp

Filesize
76KB

Download
memory/1984-39-0x000007FEF4080000-0x000007FEF4092000-memory.dmp

Filesize
72KB

Download
memory/1984-38-0x000007FEF40C0000-0x000007FEF40D1000-memory.dmp

Filesize
68KB

Download
memory/1984-34-0x000007FEF4210000-0x000007FEF423F000-memory.dmp

Filesize
188KB

Download
memory/1984-36-0x000007FEF41D0000-0x000007FEF41E6000-memory.dmp

Filesize
88KB

Download
memory/1984-35-0x000007FEF41F0000-0x000007FEF4201000-memory.dmp

Filesize
68KB

Download
memory/1984-33-0x000007FEFA8D0000-0x000007FEFA8E0000-memory.dmp

Filesize
64KB

Download
memory/1984-32-0x000007FEF5D90000-0x000007FEF5DA7000-memory.dmp

Filesize
92KB

Download
memory/1984-15-0x000007FEF46B0000-0x000007FEF5760000-memory.dmp

Filesize
16.7MB

Download
memory/1984-31-0x000007FEF4240000-0x000007FEF43C0000-memory.dmp

Filesize
1.5MB

Download
memory/1984-29-0x000007FEF5DB0000-0x000007FEF5DC1000-memory.dmp

Filesize
68KB

Download
memory/1984-28-0x000007FEF4420000-0x000007FEF449C000-memory.dmp

Filesize
496KB

Download
memory/1984-27-0x000007FEF5DD0000-0x000007FEF5E37000-memory.dmp

Filesize
412KB

Download
memory/1984-26-0x000007FEF5E40000-0x000007FEF5E70000-memory.dmp

Filesize
192KB

Download
memory/1984-23-0x000007FEF5EB0000-0x000007FEF5ECB000-memory.dmp

Filesize
108KB

Download
memory/1984-22-0x000007FEF5ED0000-0x000007FEF5EE1000-memory.dmp

Filesize
68KB

Download
memory/1984-21-0x000007FEF5F30000-0x000007FEF5F41000-memory.dmp

Filesize
68KB

Download
memory/1984-20-0x000007FEF5F50000-0x000007FEF5F61000-memory.dmp

Filesize
68KB

Download
memory/1984-19-0x000007FEF63C0000-0x000007FEF63D8000-memory.dmp

Filesize
96KB

Download
memory/1984-18-0x000007FEF5F70000-0x000007FEF5F91000-memory.dmp

Filesize
132KB

Download
memory/1984-17-0x000007FEF63E0000-0x000007FEF6421000-memory.dmp

Filesize
260KB

Download
memory/1984-16-0x000007FEF44A0000-0x000007FEF46AB000-memory.dmp

Filesize
2.0MB

Download
memory/1984-25-0x000007FEF5E70000-0x000007FEF5E88000-memory.dmp

Filesize
96KB

Download
memory/1984-48-0x000007FEF5760000-0x000007FEF5A16000-memory.dmp

Filesize
2.7MB

Download