Analysis

  • max time kernel
    146s
  • max time network
    153s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240221-en
  • resource tags

    arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    22/02/2024, 21:46

General

  • Target

    vlc.exe

  • Size

    966KB

  • MD5

    3740507a1dc4ff4cb5c6e52652c10c20

  • SHA1

    b2c8a0a736fe81c101f4ab4cd6be8099c3f902b3

  • SHA256

    6a72cc8649a63b017844c4c1f3885a250d1a982ffe5f1e58b6f1432fe9198e62

  • SHA512

    d5299859a6121c6ae5813be61648ca1f005970ebe34a8217d05b570ffbd4651f64ad7b3a7bf5129e708e07b36e097333f754b213e73d5fe9246347afd8fa3c22

  • SSDEEP

    24576:0e3xAibB85Z1HrWtB8z1L1O6J75zzz3zzzozzz3zzzzm:LxAibBEZ1LWtBzkOm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 3 IoCs
  • Suspicious use of SendNotifyMessage 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\vlc.exe
    "C:\Users\Admin\AppData\Local\Temp\vlc.exe"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:4968

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/4968-0-0x00007FF651D10000-0x00007FF651E08000-memory.dmp

          Filesize

          992KB

        • memory/4968-1-0x00007FF937740000-0x00007FF937774000-memory.dmp

          Filesize

          208KB

        • memory/4968-2-0x00007FF926090000-0x00007FF926346000-memory.dmp

          Filesize

          2.7MB

        • memory/4968-3-0x00007FF9382F0000-0x00007FF938301000-memory.dmp

          Filesize

          68KB

        • memory/4968-4-0x00007FF937720000-0x00007FF937739000-memory.dmp

          Filesize

          100KB

        • memory/4968-5-0x00007FF9375F0000-0x00007FF937612000-memory.dmp

          Filesize

          136KB

        • memory/4968-6-0x00007FF933380000-0x00007FF9333AB000-memory.dmp

          Filesize

          172KB

        • memory/4968-7-0x00007FF925D00000-0x00007FF926090000-memory.dmp

          Filesize

          3.6MB

        • memory/4968-8-0x00007FF937700000-0x00007FF937714000-memory.dmp

          Filesize

          80KB

        • memory/4968-11-0x00007FF925980000-0x00007FF925C16000-memory.dmp

          Filesize

          2.6MB

        • memory/4968-10-0x00007FF925C20000-0x00007FF925CF2000-memory.dmp

          Filesize

          840KB

        • memory/4968-12-0x00007FF925890000-0x00007FF925978000-memory.dmp

          Filesize

          928KB

        • memory/4968-17-0x00007FF92CBC0000-0x00007FF92CBE6000-memory.dmp

          Filesize

          152KB

        • memory/4968-18-0x00007FF92CA80000-0x00007FF92CAAD000-memory.dmp

          Filesize

          180KB

        • memory/4968-16-0x00007FF92DD40000-0x00007FF92DD58000-memory.dmp

          Filesize

          96KB

        • memory/4968-15-0x00007FF933350000-0x00007FF93337F000-memory.dmp

          Filesize

          188KB

        • memory/4968-14-0x00007FF92DD60000-0x00007FF92DDA1000-memory.dmp

          Filesize

          260KB

        • memory/4968-13-0x00007FF9257A0000-0x00007FF925883000-memory.dmp

          Filesize

          908KB

        • memory/4968-9-0x00007FF936E10000-0x00007FF936E21000-memory.dmp

          Filesize

          68KB

        • memory/4968-19-0x00007FF92CA60000-0x00007FF92CA7A000-memory.dmp

          Filesize

          104KB

        • memory/4968-21-0x00007FF925780000-0x00007FF925791000-memory.dmp

          Filesize

          68KB

        • memory/4968-22-0x00007FF925570000-0x00007FF92577B000-memory.dmp

          Filesize

          2.0MB

        • memory/4968-29-0x00007FF925340000-0x00007FF925351000-memory.dmp

          Filesize

          68KB

        • memory/4968-28-0x00007FF925360000-0x00007FF925372000-memory.dmp

          Filesize

          72KB

        • memory/4968-31-0x00007FF925240000-0x00007FF925251000-memory.dmp

          Filesize

          68KB

        • memory/4968-30-0x00007FF925260000-0x00007FF92533F000-memory.dmp

          Filesize

          892KB

        • memory/4968-32-0x00007FF925220000-0x00007FF925237000-memory.dmp

          Filesize

          92KB

        • memory/4968-33-0x00007FF925200000-0x00007FF925211000-memory.dmp

          Filesize

          68KB

        • memory/4968-37-0x00007FF925160000-0x00007FF925181000-memory.dmp

          Filesize

          132KB

        • memory/4968-39-0x00007FF93B4B0000-0x00007FF93B4C0000-memory.dmp

          Filesize

          64KB

        • memory/4968-38-0x00007FF924E80000-0x00007FF92515B000-memory.dmp

          Filesize

          2.9MB

        • memory/4968-41-0x00007FF924E40000-0x00007FF924E51000-memory.dmp

          Filesize

          68KB

        • memory/4968-44-0x00007FF924CE0000-0x00007FF924D59000-memory.dmp

          Filesize

          484KB

        • memory/4968-45-0x00007FF924950000-0x00007FF924CE0000-memory.dmp

          Filesize

          3.6MB

        • memory/4968-43-0x00007FF924D60000-0x00007FF924D84000-memory.dmp

          Filesize

          144KB

        • memory/4968-42-0x00007FF924D90000-0x00007FF924E3D000-memory.dmp

          Filesize

          692KB

        • memory/4968-40-0x00007FF924E60000-0x00007FF924E71000-memory.dmp

          Filesize

          68KB

        • memory/4968-36-0x00007FF925190000-0x00007FF9251B2000-memory.dmp

          Filesize

          136KB

        • memory/4968-35-0x00007FF9251C0000-0x00007FF9251D1000-memory.dmp

          Filesize

          68KB

        • memory/4968-34-0x00007FF9251E0000-0x00007FF9251F7000-memory.dmp

          Filesize

          92KB

        • memory/4968-27-0x00007FF925380000-0x00007FF92539B000-memory.dmp

          Filesize

          108KB

        • memory/4968-26-0x00007FF9253A0000-0x00007FF92544B000-memory.dmp

          Filesize

          684KB

        • memory/4968-25-0x00007FF925450000-0x00007FF925475000-memory.dmp

          Filesize

          148KB

        • memory/4968-24-0x00007FF925480000-0x00007FF9254CF000-memory.dmp

          Filesize

          316KB

        • memory/4968-46-0x00007FF924930000-0x00007FF924941000-memory.dmp

          Filesize

          68KB

        • memory/4968-23-0x00007FF9254D0000-0x00007FF925568000-memory.dmp

          Filesize

          608KB

        • memory/4968-51-0x00007FF924890000-0x00007FF9248A1000-memory.dmp

          Filesize

          68KB

        • memory/4968-52-0x00007FF924870000-0x00007FF92488B000-memory.dmp

          Filesize

          108KB

        • memory/4968-50-0x00007FF9248B0000-0x00007FF9248C4000-memory.dmp

          Filesize

          80KB

        • memory/4968-58-0x00007FF9247A0000-0x00007FF9247B1000-memory.dmp

          Filesize

          68KB

        • memory/4968-60-0x00007FF924760000-0x00007FF924772000-memory.dmp

          Filesize

          72KB

        • memory/4968-59-0x00007FF924780000-0x00007FF924793000-memory.dmp

          Filesize

          76KB

        • memory/4968-62-0x00007FF9245C0000-0x00007FF9245D4000-memory.dmp

          Filesize

          80KB

        • memory/4968-63-0x00007FF9245A0000-0x00007FF9245B2000-memory.dmp

          Filesize

          72KB

        • memory/4968-61-0x00007FF9245E0000-0x00007FF92475A000-memory.dmp

          Filesize

          1.5MB

        • memory/4968-57-0x00007FF9247C0000-0x00007FF9247D2000-memory.dmp

          Filesize

          72KB

        • memory/4968-56-0x00007FF9247E0000-0x00007FF924810000-memory.dmp

          Filesize

          192KB

        • memory/4968-55-0x00007FF924810000-0x00007FF924821000-memory.dmp

          Filesize

          68KB

        • memory/4968-54-0x00007FF924830000-0x00007FF924842000-memory.dmp

          Filesize

          72KB

        • memory/4968-53-0x00007FF924850000-0x00007FF924861000-memory.dmp

          Filesize

          68KB

        • memory/4968-48-0x00007FF9248F0000-0x00007FF924906000-memory.dmp

          Filesize

          88KB

        • memory/4968-49-0x00007FF9248D0000-0x00007FF9248E3000-memory.dmp

          Filesize

          76KB

        • memory/4968-47-0x00007FF924910000-0x00007FF924929000-memory.dmp

          Filesize

          100KB

        • memory/4968-20-0x00007FF92CA40000-0x00007FF92CA51000-memory.dmp

          Filesize

          68KB