Overview

overview

8

Static

static

1

Dr. Yunyun.mp4

windows7-x64

1

Dr. Yunyun.mp4

windows10-2004-x64

8

Analysis

  • max time kernel
    141s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/02/2024, 20:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Dr. Yunyun.mp4

  • Size

    13.3MB

  • MD5

    e3326b292ee52f7d0f0d83112ebae9a3

  • SHA1

    94cbe7be5096425c9fbe7e786cab84a93f665a47

  • SHA256

    ba7c2671892973c29ab6b797383b32545d3a9b0ad180364001ce1f426295f9a5

  • SHA512

    7c133eee509cf4a35a8f9df94a114b4fdc104e8744d0696a6120f57afd1748c4f505c10610e0947c500e8241d5b213bea161cf1cfdb49939e8e177f2da37d5d4

  • SSDEEP

    196608:3NDk0UxuTwy9JVayZB/sF2lpqAKtmOhV7JZe1uIg8KFDZoXcipoxCKchS4:3Bk4wcvGF2lKsOhV1ZZ5ZoXcuo0Q4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 28 IoCs
  • Suspicious use of SendNotifyMessage 8 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Dr. Yunyun.mp4"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:1436

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1436-5-0x000000013F2D0000-0x000000013F3C8000-memory.dmp

    Filesize

    992KB

    Download

  • memory/1436-6-0x000007FEFADF0000-0x000007FEFAE24000-memory.dmp

    Filesize

    208KB

    Download

  • memory/1436-7-0x000007FEF5DD0000-0x000007FEF6084000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/1436-9-0x000007FEFAF10000-0x000007FEFAF27000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1436-11-0x000007FEF74E0000-0x000007FEF74F7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1436-12-0x000007FEF74C0000-0x000007FEF74D1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1436-10-0x000007FEF7500000-0x000007FEF7511000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1436-13-0x000007FEF74A0000-0x000007FEF74BD000-memory.dmp

    Filesize

    116KB

    Download

  • memory/1436-8-0x000007FEFB130000-0x000007FEFB148000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1436-14-0x000007FEF5BD0000-0x000007FEF5DD0000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1436-15-0x000007FEF7480000-0x000007FEF7491000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1436-16-0x000007FEF7440000-0x000007FEF747F000-memory.dmp

    Filesize

    252KB

    Download

  • memory/1436-17-0x000007FEF7280000-0x000007FEF72A1000-memory.dmp

    Filesize

    132KB

    Download

  • memory/1436-18-0x000007FEF7260000-0x000007FEF7278000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1436-20-0x000007FEF67C0000-0x000007FEF67D1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1436-19-0x000007FEF4B20000-0x000007FEF5BCB000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/1436-21-0x000007FEF67A0000-0x000007FEF67B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1436-22-0x000007FEF6780000-0x000007FEF6791000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1436-23-0x000007FEF6760000-0x000007FEF677B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/1436-27-0x000007FEF4A60000-0x000007FEF4AC7000-memory.dmp

    Filesize

    412KB

    Download

  • memory/1436-29-0x000007FEF49D0000-0x000007FEF49E1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1436-28-0x000007FEF49F0000-0x000007FEF4A5F000-memory.dmp

    Filesize

    444KB

    Download

  • memory/1436-30-0x000007FEF4970000-0x000007FEF49C6000-memory.dmp

    Filesize

    344KB

    Download

  • memory/1436-26-0x000007FEF4AD0000-0x000007FEF4B00000-memory.dmp

    Filesize

    192KB

    Download

  • memory/1436-32-0x000007FEF47D0000-0x000007FEF47E7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1436-31-0x000007FEF47F0000-0x000007FEF4968000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/1436-33-0x000007FEF4660000-0x000007FEF47D0000-memory.dmp

    Filesize

    1.4MB

    Download

  • memory/1436-25-0x000007FEF4B00000-0x000007FEF4B18000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1436-36-0x000007FEF45A0000-0x000007FEF45EC000-memory.dmp

    Filesize

    304KB

    Download

  • memory/1436-35-0x000007FEF45F0000-0x000007FEF4632000-memory.dmp

    Filesize

    264KB

    Download

  • memory/1436-37-0x000007FEF4430000-0x000007FEF459B000-memory.dmp

    Filesize

    1.4MB

    Download

  • memory/1436-38-0x000007FEF43D0000-0x000007FEF4427000-memory.dmp

    Filesize

    348KB

    Download

  • memory/1436-34-0x000007FEF4640000-0x000007FEF4652000-memory.dmp

    Filesize

    72KB

    Download

  • memory/1436-24-0x000007FEF6740000-0x000007FEF6751000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1436-39-0x000007FEF4180000-0x000007FEF43CB000-memory.dmp

    Filesize

    2.3MB

    Download

  • memory/1436-40-0x000007FEF29D0000-0x000007FEF4180000-memory.dmp

    Filesize

    23.7MB

    Download

  • memory/1436-42-0x000007FEF29A0000-0x000007FEF29CF000-memory.dmp

    Filesize

    188KB

    Download

  • memory/1436-41-0x000007FEFB160000-0x000007FEFB170000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1436-44-0x000007FEF2960000-0x000007FEF2976000-memory.dmp

    Filesize

    88KB

    Download

  • memory/1436-45-0x000007FEF2890000-0x000007FEF2955000-memory.dmp

    Filesize

    788KB

    Download

  • memory/1436-47-0x000007FEF27A0000-0x000007FEF2802000-memory.dmp

    Filesize

    392KB

    Download

  • memory/1436-52-0x000007FEF2680000-0x000007FEF2695000-memory.dmp

    Filesize

    84KB

    Download

  • memory/1436-51-0x000007FEF26A0000-0x000007FEF26F0000-memory.dmp

    Filesize

    320KB

    Download

  • memory/1436-50-0x000007FEF26F0000-0x000007FEF2704000-memory.dmp

    Filesize

    80KB

    Download

  • memory/1436-49-0x000007FEF2710000-0x000007FEF2723000-memory.dmp

    Filesize

    76KB

    Download

  • memory/1436-48-0x000007FEF2730000-0x000007FEF279D000-memory.dmp

    Filesize

    436KB

    Download

  • memory/1436-53-0x000007FEF2460000-0x000007FEF267D000-memory.dmp

    Filesize

    2.1MB

    Download

  • memory/1436-54-0x000007FEF2440000-0x000007FEF2455000-memory.dmp

    Filesize

    84KB

    Download

  • memory/1436-55-0x000007FEF2410000-0x000007FEF2433000-memory.dmp

    Filesize

    140KB

    Download

  • memory/1436-56-0x000007FEF23F0000-0x000007FEF2403000-memory.dmp

    Filesize

    76KB

    Download

  • memory/1436-58-0x000007FEF22B0000-0x000007FEF22C1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1436-59-0x000007FEF2290000-0x000007FEF22A2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/1436-60-0x000007FEF2260000-0x000007FEF228A000-memory.dmp

    Filesize

    168KB

    Download

  • memory/1436-61-0x000007FEF2240000-0x000007FEF2253000-memory.dmp

    Filesize

    76KB

    Download

  • memory/1436-57-0x000007FEF22F0000-0x000007FEF23E4000-memory.dmp

    Filesize

    976KB

    Download

  • memory/1436-63-0x000007FEF2200000-0x000007FEF2212000-memory.dmp

    Filesize

    72KB

    Download

  • memory/1436-64-0x000007FEF21E0000-0x000007FEF21F5000-memory.dmp

    Filesize

    84KB

    Download

  • memory/1436-67-0x000007FEF2180000-0x000007FEF2192000-memory.dmp

    Filesize

    72KB

    Download

  • memory/1436-66-0x000007FEF21A0000-0x000007FEF21B4000-memory.dmp

    Filesize

    80KB

    Download

  • memory/1436-65-0x000007FEF21C0000-0x000007FEF21D3000-memory.dmp

    Filesize

    76KB

    Download

  • memory/1436-62-0x000007FEF2220000-0x000007FEF223B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/1436-46-0x000007FEF2810000-0x000007FEF2885000-memory.dmp

    Filesize

    468KB

    Download

  • memory/1436-43-0x000007FEF2980000-0x000007FEF2991000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1436-68-0x000007FEF2000000-0x000007FEF217A000-memory.dmp

    Filesize

    1.5MB

    Download