Analysis

  • max time kernel
    146s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/03/2024, 22:39

General

  • Target

    Cat.Goes.Fishing.v13.11.2019/music_IceFlow.ogg

  • Size

    1.2MB

  • MD5

    3557a9551c55af7a6144175a1801b390

  • SHA1

    a708731f97e8a8e0978c167a1eeccf8b1c5220b8

  • SHA256

    9e1dec951bac722e931bf2ea6e138659e00ef22294a9defa1e19dbcac31fbf7d

  • SHA512

    3df51fddf86c0df079a7b1533029ba33ca97e1f21b5a3f7e02c68438198a3b8f4b1bba7e0975d5de2bf03e68bbeb05ef01382d55b6887a3676a1e4ff9a2b43dc

  • SSDEEP

    24576:rxQJ29hoLF1lTWx0P+7YoUgW38yjj2HnWHrBhwwqPtPtgbjuUCN846olSt:CJqhsF/TWp7YPGScWLBhhqTgbSUC+LoK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 8 IoCs
  • Suspicious use of SendNotifyMessage 7 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Cat.Goes.Fishing.v13.11.2019\music_IceFlow.ogg"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:2352

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2352-5-0x000000013FA00000-0x000000013FAF8000-memory.dmp

          Filesize

          992KB

        • memory/2352-6-0x000007FEF72C0000-0x000007FEF72F4000-memory.dmp

          Filesize

          208KB

        • memory/2352-7-0x000007FEF5990000-0x000007FEF5C44000-memory.dmp

          Filesize

          2.7MB

        • memory/2352-8-0x000007FEFB540000-0x000007FEFB558000-memory.dmp

          Filesize

          96KB

        • memory/2352-10-0x000007FEF7310000-0x000007FEF7321000-memory.dmp

          Filesize

          68KB

        • memory/2352-9-0x000007FEFAA30000-0x000007FEFAA47000-memory.dmp

          Filesize

          92KB

        • memory/2352-12-0x000007FEF6580000-0x000007FEF6591000-memory.dmp

          Filesize

          68KB

        • memory/2352-13-0x000007FEF6560000-0x000007FEF657D000-memory.dmp

          Filesize

          116KB

        • memory/2352-14-0x000007FEF6540000-0x000007FEF6551000-memory.dmp

          Filesize

          68KB

        • memory/2352-11-0x000007FEF6BA0000-0x000007FEF6BB7000-memory.dmp

          Filesize

          92KB

        • memory/2352-15-0x000007FEF5790000-0x000007FEF5990000-memory.dmp

          Filesize

          2.0MB

        • memory/2352-16-0x000007FEF6090000-0x000007FEF60CF000-memory.dmp

          Filesize

          252KB

        • memory/2352-17-0x000007FEF46E0000-0x000007FEF578B000-memory.dmp

          Filesize

          16.7MB

        • memory/2352-19-0x000007FEF6070000-0x000007FEF6088000-memory.dmp

          Filesize

          96KB

        • memory/2352-18-0x000007FEF6510000-0x000007FEF6531000-memory.dmp

          Filesize

          132KB

        • memory/2352-20-0x000007FEF6050000-0x000007FEF6061000-memory.dmp

          Filesize

          68KB

        • memory/2352-22-0x000007FEF6010000-0x000007FEF6021000-memory.dmp

          Filesize

          68KB

        • memory/2352-24-0x000007FEF5FD0000-0x000007FEF5FE1000-memory.dmp

          Filesize

          68KB

        • memory/2352-23-0x000007FEF5FF0000-0x000007FEF600B000-memory.dmp

          Filesize

          108KB

        • memory/2352-26-0x000007FEF4690000-0x000007FEF46C0000-memory.dmp

          Filesize

          192KB

        • memory/2352-25-0x000007FEF46C0000-0x000007FEF46D8000-memory.dmp

          Filesize

          96KB

        • memory/2352-27-0x000007FEF4620000-0x000007FEF4687000-memory.dmp

          Filesize

          412KB

        • memory/2352-21-0x000007FEF6030000-0x000007FEF6041000-memory.dmp

          Filesize

          68KB

        • memory/2352-28-0x000007FEF45B0000-0x000007FEF461F000-memory.dmp

          Filesize

          444KB

        • memory/2352-29-0x000007FEF4590000-0x000007FEF45A1000-memory.dmp

          Filesize

          68KB

        • memory/2352-30-0x000007FEF4530000-0x000007FEF458C000-memory.dmp

          Filesize

          368KB

        • memory/2352-31-0x000007FEF43B0000-0x000007FEF4528000-memory.dmp

          Filesize

          1.5MB

        • memory/2352-32-0x000007FEF4390000-0x000007FEF43A7000-memory.dmp

          Filesize

          92KB

        • memory/2352-33-0x000007FEF7380000-0x000007FEF7390000-memory.dmp

          Filesize

          64KB

        • memory/2352-34-0x000007FEF4360000-0x000007FEF438F000-memory.dmp

          Filesize

          188KB

        • memory/2352-35-0x000007FEF4340000-0x000007FEF4351000-memory.dmp

          Filesize

          68KB

        • memory/2352-36-0x000007FEF4320000-0x000007FEF4336000-memory.dmp

          Filesize

          88KB

        • memory/2352-37-0x000007FEF4250000-0x000007FEF4315000-memory.dmp

          Filesize

          788KB

        • memory/2352-39-0x000007FEF41F0000-0x000007FEF4201000-memory.dmp

          Filesize

          68KB

        • memory/2352-40-0x000007FEF41D0000-0x000007FEF41E2000-memory.dmp

          Filesize

          72KB

        • memory/2352-38-0x000007FEF4230000-0x000007FEF4245000-memory.dmp

          Filesize

          84KB

        • memory/2352-41-0x000007FEF4050000-0x000007FEF41CA000-memory.dmp

          Filesize

          1.5MB

        • memory/2352-42-0x000007FEF4030000-0x000007FEF4043000-memory.dmp

          Filesize

          76KB

        • memory/2352-43-0x000007FEF4010000-0x000007FEF4024000-memory.dmp

          Filesize

          80KB

        • memory/2352-44-0x000007FEF3FF0000-0x000007FEF4001000-memory.dmp

          Filesize

          68KB

        • memory/2352-45-0x000007FEF3FD0000-0x000007FEF3FE1000-memory.dmp

          Filesize

          68KB

        • memory/2352-46-0x000007FEF3FB0000-0x000007FEF3FC1000-memory.dmp

          Filesize

          68KB

        • memory/2352-59-0x000007FEF46E0000-0x000007FEF578B000-memory.dmp

          Filesize

          16.7MB