Overview

overview

6

Static

static

1

TheWall.mp3

windows10-1703-x64

1

TheWall.mp3

windows10-1703-x64

6

Analysis

  • max time kernel
    14s
  • max time network
    25s
  • platform
    windows10-1703_x64
  • resource
    win10-20240214-en
  • resource tags

    arch:x64arch:x86image:win10-20240214-enlocale:en-usos:windows10-1703-x64system
  • submitted
    19/02/2024, 21:31

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    TheWall.mp3

  • Size

    640KB

  • MD5

    a1eb28c503e2e1509476aedcfa5348e0

  • SHA1

    801510944567f5e9c8efaa00c6c3919c2d40d51d

  • SHA256

    7136503dca5df99dcde9beed37baa9cf9fbb8d1564e0721efa2c8e78e693efaa

  • SHA512

    cd956af67fc3ab5e1a544cee4cac502a886c1a99332b1a29861eed205359efdded3fe5f73666b6ad9fcd2373f85ba23277c9e358b4f2e8188e2094fc3d65480b

  • SSDEEP

    12288:aQhrX0TBWB2cCfbV/O7XBsu4Vla9gmsjJ6YiUSdRn2C75vEa/p3tu:BhCc4Qz12aTlUSdRn2C7dJ7u

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 4 IoCs
  • Suspicious use of FindShellTrayWindow 5 IoCs
  • Suspicious use of SendNotifyMessage 4 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\TheWall.mp3"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:224
  • C:\Windows\system32\AUDIODG.EXE
    C:\Windows\system32\AUDIODG.EXE 0x2bc
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2220

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/224-7-0x00007FF60B880000-0x00007FF60B978000-memory.dmp

          Filesize

          992KB

          Download

        • memory/224-8-0x00007FFEC6D60000-0x00007FFEC6D94000-memory.dmp

          Filesize

          208KB

          Download

        • memory/224-9-0x00007FFEC3ED0000-0x00007FFEC4184000-memory.dmp

          Filesize

          2.7MB

          Download

        • memory/224-11-0x00007FFEC6D40000-0x00007FFEC6D57000-memory.dmp

          Filesize

          92KB

          Download

        • memory/224-12-0x00007FFEC4690000-0x00007FFEC46A1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-16-0x00007FFEC4530000-0x00007FFEC4541000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-17-0x00007FFEB3B10000-0x00007FFEB3D10000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/224-15-0x00007FFEC4550000-0x00007FFEC456D000-memory.dmp

          Filesize

          116KB

          Download

        • memory/224-14-0x00007FFEC4650000-0x00007FFEC4661000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-13-0x00007FFEC4670000-0x00007FFEC4687000-memory.dmp

          Filesize

          92KB

          Download

        • memory/224-10-0x00007FFEC7730000-0x00007FFEC7748000-memory.dmp

          Filesize

          96KB

          Download

        • memory/224-18-0x00007FFEB2A60000-0x00007FFEB3B0B000-memory.dmp

          Filesize

          16.7MB

          Download

        • memory/224-19-0x00007FFEC44F0000-0x00007FFEC452F000-memory.dmp

          Filesize

          252KB

          Download

        • memory/224-23-0x00007FFEC4300000-0x00007FFEC4311000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-25-0x00007FFEC42C0000-0x00007FFEC42DB000-memory.dmp

          Filesize

          108KB

          Download

        • memory/224-29-0x00007FFEC38D0000-0x00007FFEC3937000-memory.dmp

          Filesize

          412KB

          Download

        • memory/224-37-0x00007FFEC17D0000-0x00007FFEC17E1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-36-0x00007FFEC3E90000-0x00007FFEC3EA3000-memory.dmp

          Filesize

          76KB

          Download

        • memory/224-39-0x00007FFEC16E0000-0x00007FFEC16F2000-memory.dmp

          Filesize

          72KB

          Download

        • memory/224-41-0x00007FFEC13A0000-0x00007FFEC13B4000-memory.dmp

          Filesize

          80KB

          Download

        • memory/224-42-0x00007FFEC1380000-0x00007FFEC1392000-memory.dmp

          Filesize

          72KB

          Download

        • memory/224-43-0x00007FFEC1360000-0x00007FFEC1374000-memory.dmp

          Filesize

          80KB

          Download

        • memory/224-44-0x00007FFEC1340000-0x00007FFEC135E000-memory.dmp

          Filesize

          120KB

          Download

        • memory/224-45-0x00007FFEC1320000-0x00007FFEC1336000-memory.dmp

          Filesize

          88KB

          Download

        • memory/224-48-0x00007FFEC12B0000-0x00007FFEC12DC000-memory.dmp

          Filesize

          176KB

          Download

        • memory/224-47-0x00007FFEC12E0000-0x00007FFEC12F4000-memory.dmp

          Filesize

          80KB

          Download

        • memory/224-50-0x00007FFEC1260000-0x00007FFEC1290000-memory.dmp

          Filesize

          192KB

          Download

        • memory/224-49-0x00007FFEC1290000-0x00007FFEC12A2000-memory.dmp

          Filesize

          72KB

          Download

        • memory/224-51-0x00007FFEC1240000-0x00007FFEC1257000-memory.dmp

          Filesize

          92KB

          Download

        • memory/224-46-0x00007FFEC1300000-0x00007FFEC1315000-memory.dmp

          Filesize

          84KB

          Download

        • memory/224-40-0x00007FFEC15E0000-0x00007FFEC15F1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-38-0x00007FFEC1700000-0x00007FFEC17C5000-memory.dmp

          Filesize

          788KB

          Download

        • memory/224-35-0x00007FFEC17F0000-0x00007FFEC181F000-memory.dmp

          Filesize

          188KB

          Download

        • memory/224-34-0x00007FFEC1820000-0x00007FFEC1877000-memory.dmp

          Filesize

          348KB

          Download

        • memory/224-33-0x00007FFEC3EB0000-0x00007FFEC3EC1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-32-0x00007FFEC4210000-0x00007FFEC4227000-memory.dmp

          Filesize

          92KB

          Download

        • memory/224-31-0x00007FFEC4230000-0x00007FFEC4241000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-30-0x00007FFEC3860000-0x00007FFEC38CF000-memory.dmp

          Filesize

          444KB

          Download

        • memory/224-28-0x00007FFEC4250000-0x00007FFEC4280000-memory.dmp

          Filesize

          192KB

          Download

        • memory/224-27-0x00007FFEC4280000-0x00007FFEC4298000-memory.dmp

          Filesize

          96KB

          Download

        • memory/224-26-0x00007FFEC42A0000-0x00007FFEC42B1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-24-0x00007FFEC42E0000-0x00007FFEC42F1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-22-0x00007FFEC4320000-0x00007FFEC4331000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-21-0x00007FFEC44D0000-0x00007FFEC44E8000-memory.dmp

          Filesize

          96KB

          Download

        • memory/224-20-0x00007FFEC4340000-0x00007FFEC4361000-memory.dmp

          Filesize

          132KB

          Download

        • memory/224-54-0x00007FFEC1200000-0x00007FFEC1212000-memory.dmp

          Filesize

          72KB

          Download

        • memory/224-55-0x00007FFEB1130000-0x00007FFEB12A8000-memory.dmp

          Filesize

          1.5MB

          Download

        • memory/224-53-0x00007FFEC1220000-0x00007FFEC1231000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-57-0x00007FFEBEDD0000-0x00007FFEBEE26000-memory.dmp

          Filesize

          344KB

          Download

        • memory/224-58-0x00007FFEBEDA0000-0x00007FFEBEDC8000-memory.dmp

          Filesize

          160KB

          Download

        • memory/224-59-0x00007FFEB1100000-0x00007FFEB1124000-memory.dmp

          Filesize

          144KB

          Download

        • memory/224-60-0x00007FFEC7200000-0x00007FFEC7210000-memory.dmp

          Filesize

          64KB

          Download

        • memory/224-61-0x00007FFEC1180000-0x00007FFEC1196000-memory.dmp

          Filesize

          88KB

          Download

        • memory/224-56-0x00007FFEC11E0000-0x00007FFEC11F7000-memory.dmp

          Filesize

          92KB

          Download

        • memory/224-52-0x00007FFEB12B0000-0x00007FFEB2A60000-memory.dmp

          Filesize

          23.7MB

          Download

        • memory/224-63-0x00007FFEB1010000-0x00007FFEB1072000-memory.dmp

          Filesize

          392KB

          Download

        • memory/224-64-0x00007FFEB0FA0000-0x00007FFEB100D000-memory.dmp

          Filesize

          436KB

          Download

        • memory/224-65-0x00007FFEBF820000-0x00007FFEBF835000-memory.dmp

          Filesize

          84KB

          Download

        • memory/224-66-0x00007FFEB0B60000-0x00007FFEB0B71000-memory.dmp

          Filesize

          68KB

          Download

        • memory/224-67-0x00007FFEB0B40000-0x00007FFEB0B52000-memory.dmp

          Filesize

          72KB

          Download

        • memory/224-62-0x00007FFEB1080000-0x00007FFEB10F5000-memory.dmp

          Filesize

          468KB

          Download

        • memory/224-68-0x00007FFEB09C0000-0x00007FFEB0B3A000-memory.dmp

          Filesize

          1.5MB

          Download