Overview

overview

7

Static

static

7

avidemux_2...64.exe

windows7-x64

7

avidemux_2...64.exe

windows10-2004-x64

7

QtCore4.dll

windows7-x64

1

QtCore4.dll

windows10-2004-x64

1

QtGui4.dll

windows7-x64

1

QtGui4.dll

windows10-2004-x64

1

QtOpenGL4.dll

windows7-x64

1

QtOpenGL4.dll

windows10-2004-x64

1

What's New.html

windows7-x64

1

What's New.html

windows10-2004-x64

1

aften.dll

windows7-x64

1

aften.dll

windows10-2004-x64

1

avcodec-53.dll

windows7-x64

1

avcodec-53.dll

windows10-2004-x64

1

avformat-53.dll

windows7-x64

1

avformat-53.dll

windows10-2004-x64

1

avidemux2.exe

windows7-x64

1

avidemux2.exe

windows10-2004-x64

1

avidemux2_cli.exe

windows7-x64

1

avidemux2_cli.exe

windows10-2004-x64

1

avsproxy.exe

windows7-x64

1

avsproxy.exe

windows10-2004-x64

1

avsproxy_gui.exe

windows7-x64

7

avsproxy_gui.exe

windows10-2004-x64

7

avutil-51.dll

windows7-x64

1

avutil-51.dll

windows10-2004-x64

1

libADM_UICli.dll

windows7-x64

1

libADM_UICli.dll

windows10-2004-x64

1

libADM_UIQT4.dll

windows7-x64

1

libADM_UIQT4.dll

windows10-2004-x64

1

libADM_core.dll

windows7-x64

1

libADM_core.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    142s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07-03-2024 17:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    avsproxy_gui.exe

  • Size

    345KB

  • MD5

    ed3b4d846dc85de83f248d3a49124b8a

  • SHA1

    1519322e95971845ba9301392efabbe83867448f

  • SHA256

    8e3e9974e7adeb4acb6ea4e77b3de94090a3972c7004d518aef7881bd5eafb17

  • SHA512

    2046337c464259025e267336929a2b1847fc8714713526d174799fcd90b0b0da39875ef298d201db50b95bd0e8979c838f76708666c715e8d05da1c77dc56b31

  • SSDEEP

    6144:/oSvggo35rG+dAAjpgvWZO1OKdFeuOo53fh1ikL4DuuSLajlmrEvloS:g4gVJh66pgvWMNQq5xLvu4E9oS

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 3 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\avsproxy_gui.exe
    "C:\Users\Admin\AppData\Local\Temp\avsproxy_gui.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    PID:2052

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2052-0-0x0000000000400000-0x0000000000515000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2052-1-0x0000000000230000-0x0000000000231000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2052-2-0x0000000000400000-0x0000000000515000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2052-3-0x0000000000400000-0x0000000000515000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2052-5-0x0000000000230000-0x0000000000231000-memory.dmp

    Filesize

    4KB

    Download