921da20bb910cb6b1bcfb74c21e31d82fb201d5298270e1e811d7b288c1409d0

Analysis

max time kernel
31s
max time network
23s
platform
windows10-1703_x64
resource
win10-20231215-en
resource tags

arch:x64arch:x86image:win10-20231215-enlocale:en-usos:windows10-1703-x64system
submitted
13/02/2024, 19:55

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

getfuckedfoxypaw.mp3
Size

2.0MB
MD5

5b785a090119f96d87428a5aa0b2933e
SHA1

09e1eabb350f055f47753444cc807a318a5e6eeb
SHA256

921da20bb910cb6b1bcfb74c21e31d82fb201d5298270e1e811d7b288c1409d0
SHA512

151c5bdc2b47442eb67aa6306def5352424f85d3f4b24912a440540bc4a74c18e09d168a8f8b728ca5f15bb06e0a380f4e1e68bc97204697a9e6c5766b7a2241
SSDEEP

24576:8ffCAc0vZIrhSZFBwjV3J0fYiWhQ7cFw6usnoG752GrXpzdkVQ6Sq56YWKn4evmS:HyZPFITiWS8uwocUGrIVQQnSls

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
208	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
208	vlc.exe

Suspicious use of AdjustPrivilegeToken 4 IoCs

description	pid	Process
Token: 33	2752	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	2752	AUDIODG.EXE
Token: 33	208	vlc.exe
Token: SeIncBasePriorityPrivilege	208	vlc.exe

Suspicious use of FindShellTrayWindow 5 IoCs

pid	Process
208	vlc.exe
208	vlc.exe
208	vlc.exe
208	vlc.exe
208	vlc.exe

Suspicious use of SendNotifyMessage 4 IoCs

pid	Process
208	vlc.exe
208	vlc.exe
208	vlc.exe
208	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
208	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\getfuckedfoxypaw.mp3"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:208

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x404
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2752

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/208-7-0x00007FF739950000-0x00007FF739A48000-memory.dmp

Filesize
992KB

Download
memory/208-8-0x00007FFC56EC0000-0x00007FFC56EF4000-memory.dmp

Filesize
208KB

Download
memory/208-9-0x00007FFC534E0000-0x00007FFC53794000-memory.dmp

Filesize
2.7MB

Download
memory/208-11-0x00007FFC56EA0000-0x00007FFC56EB7000-memory.dmp

Filesize
92KB

Download
memory/208-12-0x00007FFC56E80000-0x00007FFC56E91000-memory.dmp

Filesize
68KB

Download
memory/208-13-0x00007FFC56E60000-0x00007FFC56E77000-memory.dmp

Filesize
92KB

Download
memory/208-15-0x00007FFC53F60000-0x00007FFC53F7D000-memory.dmp

Filesize
116KB

Download
memory/208-14-0x00007FFC56E40000-0x00007FFC56E51000-memory.dmp

Filesize
68KB

Download
memory/208-10-0x00007FFC58290000-0x00007FFC582A8000-memory.dmp

Filesize
96KB

Download
memory/208-16-0x00007FFC53130000-0x00007FFC53330000-memory.dmp

Filesize
2.0MB

Download
memory/208-17-0x00007FFC53F40000-0x00007FFC53F51000-memory.dmp

Filesize
68KB

Download
memory/208-18-0x00007FFC53CC0000-0x00007FFC53CFF000-memory.dmp

Filesize
252KB

Download
memory/208-19-0x00007FFC43300000-0x00007FFC443AB000-memory.dmp

Filesize
16.7MB

Download
memory/208-20-0x00007FFC53C90000-0x00007FFC53CB1000-memory.dmp

Filesize
132KB

Download
memory/208-22-0x00007FFC53C70000-0x00007FFC53C81000-memory.dmp

Filesize
68KB

Download
memory/208-28-0x00007FFC53100000-0x00007FFC53130000-memory.dmp

Filesize
192KB

Download
memory/208-27-0x00007FFC53BD0000-0x00007FFC53BE8000-memory.dmp

Filesize
96KB

Download
memory/208-26-0x00007FFC53BF0000-0x00007FFC53C01000-memory.dmp

Filesize
68KB

Download
memory/208-30-0x00007FFC51B80000-0x00007FFC51BEF000-memory.dmp

Filesize
444KB

Download
memory/208-31-0x00007FFC53BB0000-0x00007FFC53BC1000-memory.dmp

Filesize
68KB

Download
memory/208-32-0x00007FFC530E0000-0x00007FFC530F7000-memory.dmp

Filesize
92KB

Download
memory/208-33-0x00007FFC51B60000-0x00007FFC51B71000-memory.dmp

Filesize
68KB

Download
memory/208-35-0x00007FFC51AD0000-0x00007FFC51AFF000-memory.dmp

Filesize
188KB

Download
memory/208-34-0x00007FFC51B00000-0x00007FFC51B57000-memory.dmp

Filesize
348KB

Download
memory/208-37-0x00007FFC50ED0000-0x00007FFC50EE1000-memory.dmp

Filesize
68KB

Download
memory/208-36-0x00007FFC519C0000-0x00007FFC519D3000-memory.dmp

Filesize
76KB

Download
memory/208-29-0x00007FFC51BF0000-0x00007FFC51C57000-memory.dmp

Filesize
412KB

Download
memory/208-38-0x00007FFC4DBE0000-0x00007FFC4DCA5000-memory.dmp

Filesize
788KB

Download
memory/208-39-0x00007FFC50E00000-0x00007FFC50E12000-memory.dmp

Filesize
72KB

Download
memory/208-40-0x00007FFC50DE0000-0x00007FFC50DF1000-memory.dmp

Filesize
68KB

Download
memory/208-41-0x00007FFC50DC0000-0x00007FFC50DD4000-memory.dmp

Filesize
80KB

Download
memory/208-42-0x00007FFC50DA0000-0x00007FFC50DB2000-memory.dmp

Filesize
72KB

Download
memory/208-43-0x00007FFC4FEE0000-0x00007FFC4FEF4000-memory.dmp

Filesize
80KB

Download
memory/208-45-0x00007FFC4FE70000-0x00007FFC4FE86000-memory.dmp

Filesize
88KB

Download
memory/208-48-0x00007FFC4F5C0000-0x00007FFC4F5EC000-memory.dmp

Filesize
176KB

Download
memory/208-51-0x00007FFC4DB90000-0x00007FFC4DBA7000-memory.dmp

Filesize
92KB

Download
memory/208-49-0x00007FFC4FE10000-0x00007FFC4FE22000-memory.dmp

Filesize
72KB

Download
memory/208-47-0x00007FFC4FE30000-0x00007FFC4FE44000-memory.dmp

Filesize
80KB

Download
memory/208-46-0x00007FFC4FE50000-0x00007FFC4FE65000-memory.dmp

Filesize
84KB

Download
memory/208-50-0x00007FFC4DBB0000-0x00007FFC4DBE0000-memory.dmp

Filesize
192KB

Download
memory/208-44-0x00007FFC4FEC0000-0x00007FFC4FEDE000-memory.dmp

Filesize
120KB

Download
memory/208-25-0x00007FFC53C10000-0x00007FFC53C2B000-memory.dmp

Filesize
108KB

Download
memory/208-24-0x00007FFC53C30000-0x00007FFC53C41000-memory.dmp

Filesize
68KB

Download
memory/208-23-0x00007FFC53C50000-0x00007FFC53C61000-memory.dmp

Filesize
68KB

Download
memory/208-21-0x00007FFC53F20000-0x00007FFC53F38000-memory.dmp

Filesize
96KB

Download
memory/208-54-0x00007FFC4DB50000-0x00007FFC4DB62000-memory.dmp

Filesize
72KB

Download
memory/208-53-0x00007FFC4DB70000-0x00007FFC4DB81000-memory.dmp

Filesize
68KB

Download
memory/208-52-0x00007FFC41B50000-0x00007FFC43300000-memory.dmp

Filesize
23.7MB

Download
memory/208-55-0x00007FFC419D0000-0x00007FFC41B48000-memory.dmp

Filesize
1.5MB

Download
memory/208-57-0x00007FFC4DAD0000-0x00007FFC4DB26000-memory.dmp

Filesize
344KB

Download
memory/208-56-0x00007FFC4DB30000-0x00007FFC4DB47000-memory.dmp

Filesize
92KB

Download
memory/208-59-0x00007FFC41970000-0x00007FFC41994000-memory.dmp

Filesize
144KB

Download
memory/208-61-0x00007FFC41950000-0x00007FFC41966000-memory.dmp

Filesize
88KB

Download
memory/208-60-0x00007FFC56E30000-0x00007FFC56E40000-memory.dmp

Filesize
64KB

Download
memory/208-64-0x00007FFC417F0000-0x00007FFC4185D000-memory.dmp

Filesize
436KB

Download
memory/208-63-0x00007FFC41860000-0x00007FFC418C2000-memory.dmp

Filesize
392KB

Download
memory/208-66-0x00007FFC41390000-0x00007FFC413A1000-memory.dmp

Filesize
68KB

Download
memory/208-67-0x00007FFC41370000-0x00007FFC41382000-memory.dmp

Filesize
72KB

Download
memory/208-65-0x00007FFC417D0000-0x00007FFC417E5000-memory.dmp

Filesize
84KB

Download
memory/208-68-0x00007FFC411F0000-0x00007FFC4136A000-memory.dmp

Filesize
1.5MB

Download
memory/208-62-0x00007FFC418D0000-0x00007FFC41945000-memory.dmp

Filesize
468KB

Download
memory/208-58-0x00007FFC419A0000-0x00007FFC419C8000-memory.dmp

Filesize
160KB

Download