c479035167444f7cda7851652f40508d1aa57616a474a254bb3f2063a4b3edff

Analysis

max time kernel
51s
max time network
17s
platform
windows7_x64
resource
win7-20240220-en
resource tags

arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
submitted
20/02/2024, 13:18

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

761565737.mov
Size

1KB
MD5

37f49289d6e3e883a7ff15769fd6e21e
SHA1

5c4c55f5b9aaf86c02637f51fae95db8c15c241e
SHA256

16724537d085b5c52f4946e83c2f833d89fd2ef10234de382cdfdda6754f7f95
SHA512

370c724fd7e13749f0a4bb137b35927187a6214cfbd66eb0b75b7ae1a5f54d52fd72846fa1277e7531b2d22c602e45b09d91da38faef3c0aa5b7d9e4d8e9acf7

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
2120	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2120	vlc.exe

Suspicious use of FindShellTrayWindow 19 IoCs

pid	Process
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe

Suspicious use of SendNotifyMessage 17 IoCs

pid	Process
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe
2120	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2120	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\761565737.mov"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:2120

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Roaming\vlc\vlc-qt-interface.ini

Filesize
85B

MD5
6d3e7921d16bc5c9fde23e49867d0fea

SHA1
449a65faa7d6ea57a6106a98ee808e250fc29e92

SHA256
69faf5ea00ef5591f8d9dabff372274a32e4ba851d77fc8599dc5773eaaa9921

SHA512
6ce3a5ca0b2598cb086aee1bcd37be4a6f520591be83ace06676b568daa6de3c35bd46444d5d8eba5f485458a0fd3b655746469e61a2d9999456e3e7d66b10d1

Download Submit
memory/2120-8-0x000007FEF7AC0000-0x000007FEF7AF4000-memory.dmp

Filesize
208KB

Download
memory/2120-7-0x000000013F350000-0x000000013F448000-memory.dmp

Filesize
992KB

Download
memory/2120-9-0x000007FEF6120000-0x000007FEF63D4000-memory.dmp

Filesize
2.7MB

Download
memory/2120-10-0x000007FEFB990000-0x000007FEFB9A8000-memory.dmp

Filesize
96KB

Download
memory/2120-11-0x000007FEF7B10000-0x000007FEF7B27000-memory.dmp

Filesize
92KB

Download
memory/2120-12-0x000007FEF6DF0000-0x000007FEF6E01000-memory.dmp

Filesize
68KB

Download
memory/2120-13-0x000007FEF6DD0000-0x000007FEF6DE7000-memory.dmp

Filesize
92KB

Download
memory/2120-14-0x000007FEF6DB0000-0x000007FEF6DC1000-memory.dmp

Filesize
68KB

Download
memory/2120-17-0x000007FEF5F20000-0x000007FEF6120000-memory.dmp

Filesize
2.0MB

Download
memory/2120-16-0x000007FEF6840000-0x000007FEF6851000-memory.dmp

Filesize
68KB

Download
memory/2120-15-0x000007FEF68D0000-0x000007FEF68ED000-memory.dmp

Filesize
116KB

Download
memory/2120-18-0x000007FEF4E70000-0x000007FEF5F1B000-memory.dmp

Filesize
16.7MB

Download
memory/2120-19-0x000007FEF6800000-0x000007FEF683F000-memory.dmp

Filesize
252KB

Download
memory/2120-20-0x000007FEF67D0000-0x000007FEF67F1000-memory.dmp

Filesize
132KB

Download
memory/2120-21-0x000007FEF67B0000-0x000007FEF67C8000-memory.dmp

Filesize
96KB

Download
memory/2120-22-0x000007FEF6790000-0x000007FEF67A1000-memory.dmp

Filesize
68KB

Download
memory/2120-23-0x000007FEF6770000-0x000007FEF6781000-memory.dmp

Filesize
68KB

Download
memory/2120-24-0x000007FEF6750000-0x000007FEF6761000-memory.dmp

Filesize
68KB

Download
memory/2120-25-0x000007FEF4E50000-0x000007FEF4E6B000-memory.dmp

Filesize
108KB

Download
memory/2120-26-0x000007FEF4E30000-0x000007FEF4E41000-memory.dmp

Filesize
68KB

Download
memory/2120-27-0x000007FEF4E10000-0x000007FEF4E28000-memory.dmp

Filesize
96KB

Download
memory/2120-33-0x000007FEF4C50000-0x000007FEF4C78000-memory.dmp

Filesize
160KB

Download
memory/2120-32-0x000007FEF4C80000-0x000007FEF4CD6000-memory.dmp

Filesize
344KB

Download
memory/2120-41-0x000007FEF4B20000-0x000007FEF4B32000-memory.dmp

Filesize
72KB

Download
memory/2120-40-0x000007FEF4B40000-0x000007FEF4B53000-memory.dmp

Filesize
76KB

Download
memory/2120-39-0x000007FEF4B60000-0x000007FEF4B81000-memory.dmp

Filesize
132KB

Download
memory/2120-38-0x000007FEF4B90000-0x000007FEF4BA2000-memory.dmp

Filesize
72KB

Download
memory/2120-37-0x000007FEF4BB0000-0x000007FEF4BC1000-memory.dmp

Filesize
68KB

Download
memory/2120-36-0x000007FEF4BD0000-0x000007FEF4BF3000-memory.dmp

Filesize
140KB

Download
memory/2120-43-0x000007FEF49B0000-0x000007FEF49DC000-memory.dmp

Filesize
176KB

Download
memory/2120-42-0x000007FEF49E0000-0x000007FEF4B1B000-memory.dmp

Filesize
1.2MB

Download
memory/2120-35-0x000007FEF4C00000-0x000007FEF4C17000-memory.dmp

Filesize
92KB

Download
memory/2120-34-0x000007FEF4C20000-0x000007FEF4C44000-memory.dmp

Filesize
144KB

Download
memory/2120-31-0x000007FEF4CE0000-0x000007FEF4CF1000-memory.dmp

Filesize
68KB

Download
memory/2120-30-0x000007FEF4D00000-0x000007FEF4D6F000-memory.dmp

Filesize
444KB

Download
memory/2120-29-0x000007FEF4D70000-0x000007FEF4DD7000-memory.dmp

Filesize
412KB

Download
memory/2120-28-0x000007FEF4DE0000-0x000007FEF4E10000-memory.dmp

Filesize
192KB

Download
memory/2120-44-0x000007FEF47F0000-0x000007FEF49A2000-memory.dmp

Filesize
1.7MB

Download
memory/2120-45-0x000007FEF4790000-0x000007FEF47EC000-memory.dmp

Filesize
368KB

Download
memory/2120-46-0x000007FEF4770000-0x000007FEF4781000-memory.dmp

Filesize
68KB

Download
memory/2120-47-0x000007FEF46D0000-0x000007FEF4767000-memory.dmp

Filesize
604KB

Download
memory/2120-48-0x000007FEF46B0000-0x000007FEF46C2000-memory.dmp

Filesize
72KB

Download
memory/2120-49-0x000007FEF4470000-0x000007FEF46A1000-memory.dmp

Filesize
2.2MB

Download
memory/2120-50-0x000007FEF4350000-0x000007FEF4462000-memory.dmp

Filesize
1.1MB

Download
memory/2120-51-0x000007FEF4310000-0x000007FEF4345000-memory.dmp

Filesize
212KB

Download
memory/2120-54-0x000007FEF4250000-0x000007FEF42B1000-memory.dmp

Filesize
388KB

Download
memory/2120-53-0x000007FEF42C0000-0x000007FEF42D1000-memory.dmp

Filesize
68KB

Download
memory/2120-52-0x000007FEF42E0000-0x000007FEF4305000-memory.dmp

Filesize
148KB

Download
memory/2120-55-0x000007FEF4230000-0x000007FEF4241000-memory.dmp

Filesize
68KB

Download
memory/2120-61-0x000007FEF4210000-0x000007FEF4222000-memory.dmp

Filesize
72KB

Download
memory/2120-64-0x000007FEF4130000-0x000007FEF4141000-memory.dmp

Filesize
68KB

Download
memory/2120-63-0x000007FEF4150000-0x000007FEF41EF000-memory.dmp

Filesize
636KB

Download
memory/2120-62-0x000007FEF41F0000-0x000007FEF4203000-memory.dmp

Filesize
76KB

Download
memory/2120-69-0x000007FEF3FA0000-0x000007FEF3FB2000-memory.dmp

Filesize
72KB

Download
memory/2120-70-0x000007FEF3F80000-0x000007FEF3F98000-memory.dmp

Filesize
96KB

Download
memory/2120-68-0x000007FEF3FC0000-0x000007FEF3FD1000-memory.dmp

Filesize
68KB

Download
memory/2120-67-0x000007FEF3FE0000-0x000007FEF3FF1000-memory.dmp

Filesize
68KB

Download
memory/2120-66-0x000007FEF4000000-0x000007FEF4011000-memory.dmp

Filesize
68KB

Download
memory/2120-65-0x000007FEF4020000-0x000007FEF4122000-memory.dmp

Filesize
1.0MB

Download
memory/2120-71-0x000007FEF3F60000-0x000007FEF3F76000-memory.dmp

Filesize
88KB

Download
memory/2120-72-0x000007FEF3F30000-0x000007FEF3F59000-memory.dmp

Filesize
164KB

Download
memory/2120-73-0x000007FEF3F10000-0x000007FEF3F22000-memory.dmp

Filesize
72KB

Download
memory/2120-74-0x000007FEF3EF0000-0x000007FEF3F01000-memory.dmp

Filesize
68KB

Download
memory/2120-75-0x000007FEF3ED0000-0x000007FEF3EE1000-memory.dmp

Filesize
68KB

Download