Analysis

  • max time kernel
    141s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    02/03/2024, 22:39

General

  • Target

    Cat.Goes.Fishing.v13.11.2019/music_NightOfChaos.ogg

  • Size

    1.6MB

  • MD5

    6ed37a2c7a1b192f7c3a60e4cadebb49

  • SHA1

    041169fc4b9e58195173472375d2ea550d7fbf8b

  • SHA256

    c423c0306fb44d959cd29299009d97d6d42c8273b62230a5a527248045e20601

  • SHA512

    97c38492f00d17de5a35da1890dac21fe46f1125fe282df006e9b1a05392b9ba15a9a8014b65bee96a03f0aa9cf6733487abd42e725642d3bf5aafbda672517c

  • SSDEEP

    49152:kYKmIRNLhmSA5P652sJdUTZgU23VXp7RXAMgh6zirsh1:fIrLhmi524IOUitppk0Wg7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 6 IoCs
  • Suspicious use of SendNotifyMessage 5 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Cat.Goes.Fishing.v13.11.2019\music_NightOfChaos.ogg"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:2348

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2348-5-0x000000013F8E0000-0x000000013F9D8000-memory.dmp

          Filesize

          992KB

        • memory/2348-6-0x000007FEF8550000-0x000007FEF8584000-memory.dmp

          Filesize

          208KB

        • memory/2348-7-0x000007FEF6500000-0x000007FEF67B4000-memory.dmp

          Filesize

          2.7MB

        • memory/2348-8-0x000007FEFBA60000-0x000007FEFBA78000-memory.dmp

          Filesize

          96KB

        • memory/2348-9-0x000007FEFB2B0000-0x000007FEFB2C7000-memory.dmp

          Filesize

          92KB

        • memory/2348-10-0x000007FEF8530000-0x000007FEF8541000-memory.dmp

          Filesize

          68KB

        • memory/2348-11-0x000007FEF7750000-0x000007FEF7767000-memory.dmp

          Filesize

          92KB

        • memory/2348-12-0x000007FEF7730000-0x000007FEF7741000-memory.dmp

          Filesize

          68KB

        • memory/2348-13-0x000007FEF7710000-0x000007FEF772D000-memory.dmp

          Filesize

          116KB

        • memory/2348-14-0x000007FEF6C20000-0x000007FEF6C31000-memory.dmp

          Filesize

          68KB

        • memory/2348-15-0x000007FEF6300000-0x000007FEF6500000-memory.dmp

          Filesize

          2.0MB

        • memory/2348-16-0x000007FEF6BE0000-0x000007FEF6C1F000-memory.dmp

          Filesize

          252KB

        • memory/2348-19-0x000007FEF6B90000-0x000007FEF6BA8000-memory.dmp

          Filesize

          96KB

        • memory/2348-24-0x000007FEF5210000-0x000007FEF5221000-memory.dmp

          Filesize

          68KB

        • memory/2348-27-0x000007FEF5150000-0x000007FEF51B7000-memory.dmp

          Filesize

          412KB

        • memory/2348-29-0x000007FEF50C0000-0x000007FEF50D1000-memory.dmp

          Filesize

          68KB

        • memory/2348-30-0x000007FEF5060000-0x000007FEF50BC000-memory.dmp

          Filesize

          368KB

        • memory/2348-28-0x000007FEF50E0000-0x000007FEF514F000-memory.dmp

          Filesize

          444KB

        • memory/2348-26-0x000007FEF51C0000-0x000007FEF51F0000-memory.dmp

          Filesize

          192KB

        • memory/2348-31-0x000007FEF4EE0000-0x000007FEF5058000-memory.dmp

          Filesize

          1.5MB

        • memory/2348-32-0x000007FEF4EC0000-0x000007FEF4ED7000-memory.dmp

          Filesize

          92KB

        • memory/2348-25-0x000007FEF51F0000-0x000007FEF5208000-memory.dmp

          Filesize

          96KB

        • memory/2348-33-0x000007FEFB2A0000-0x000007FEFB2B0000-memory.dmp

          Filesize

          64KB

        • memory/2348-23-0x000007FEF5230000-0x000007FEF524B000-memory.dmp

          Filesize

          108KB

        • memory/2348-34-0x000007FEF4E90000-0x000007FEF4EBF000-memory.dmp

          Filesize

          188KB

        • memory/2348-35-0x000007FEF4E70000-0x000007FEF4E81000-memory.dmp

          Filesize

          68KB

        • memory/2348-36-0x000007FEF4E50000-0x000007FEF4E66000-memory.dmp

          Filesize

          88KB

        • memory/2348-22-0x000007FEF6B30000-0x000007FEF6B41000-memory.dmp

          Filesize

          68KB

        • memory/2348-21-0x000007FEF6B50000-0x000007FEF6B61000-memory.dmp

          Filesize

          68KB

        • memory/2348-37-0x000007FEF4D80000-0x000007FEF4E45000-memory.dmp

          Filesize

          788KB

        • memory/2348-40-0x000007FEF4D00000-0x000007FEF4D12000-memory.dmp

          Filesize

          72KB

        • memory/2348-39-0x000007FEF4D20000-0x000007FEF4D31000-memory.dmp

          Filesize

          68KB

        • memory/2348-38-0x000007FEF4D60000-0x000007FEF4D75000-memory.dmp

          Filesize

          84KB

        • memory/2348-20-0x000007FEF6B70000-0x000007FEF6B81000-memory.dmp

          Filesize

          68KB

        • memory/2348-18-0x000007FEF6BB0000-0x000007FEF6BD1000-memory.dmp

          Filesize

          132KB

        • memory/2348-17-0x000007FEF5250000-0x000007FEF62FB000-memory.dmp

          Filesize

          16.7MB

        • memory/2348-41-0x000007FEF4B80000-0x000007FEF4CFA000-memory.dmp

          Filesize

          1.5MB

        • memory/2348-42-0x000007FEF4B60000-0x000007FEF4B73000-memory.dmp

          Filesize

          76KB

        • memory/2348-43-0x000007FEF4B40000-0x000007FEF4B54000-memory.dmp

          Filesize

          80KB

        • memory/2348-44-0x000007FEF4B20000-0x000007FEF4B31000-memory.dmp

          Filesize

          68KB

        • memory/2348-45-0x000007FEF4B00000-0x000007FEF4B11000-memory.dmp

          Filesize

          68KB

        • memory/2348-46-0x000007FEF4AE0000-0x000007FEF4AF1000-memory.dmp

          Filesize

          68KB