Overview

overview

7

Static

static

3

Crack/VideoGet.exe

windows7-x64

3

Crack/VideoGet.exe

windows10-2004-x64

1

Crack/新�...��.url

windows7-x64

1

Crack/新�...��.url

windows10-2004-x64

1

VideoGetIn...al.exe

windows7-x64

7

VideoGetIn...al.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

Help/VideoGet.chm

windows7-x64

1

Help/VideoGet.chm

windows10-2004-x64

1

Help/uninstall.exe

windows7-x64

7

Help/uninstall.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

VideoGet.exe

windows7-x64

6

VideoGet.exe

windows10-2004-x64

1

ffmpeg.exe

windows7-x64

1

ffmpeg.exe

windows10-2004-x64

1

新云软件.url

windows7-x64

1

新云软件.url

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/03/2024, 06:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    VideoGet.exe

  • Size

    1.2MB

  • MD5

    c94d23796f364c5716aada58417a4831

  • SHA1

    ef61925e2aba71143aac20f5c4795a9b48dcac2f

  • SHA256

    48ddf67203c4348d8f8b1752bb19069793609be9bc2782a55918c3d92d04577d

  • SHA512

    a65b598d8011c4718fa94fbf132b5296b0b4c130bc772ddf1fb7ce80cdb513a0e715aba7fd02e832364327a131886b9db3fda084cc4e630ec119c6da5358456b

  • SSDEEP

    24576:Ixh9IdNaK1rgXkk6JBo3K31REiQvfDBmMeOpzQ8m2VkQr2m:TzaKokkEBo3q3QQMZzQJ22Qr2m

Score
1/10

Malware Config

Signatures

  • Modifies registry class 5 IoCs
  • Suspicious use of FindShellTrayWindow 11 IoCs
  • Suspicious use of SendNotifyMessage 11 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\VideoGet.exe
    "C:\Users\Admin\AppData\Local\Temp\VideoGet.exe"
    1⤵
    • Modifies registry class
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:4468

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4468-0-0x0000000000400000-0x0000000000717000-memory.dmp

    Filesize

    3.1MB

    Download

  • memory/4468-2-0x00000000025B0000-0x00000000025B1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-1-0x00000000024D0000-0x0000000002512000-memory.dmp

    Filesize

    264KB

    Download

  • memory/4468-3-0x00000000024C0000-0x00000000024C1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-4-0x0000000002460000-0x0000000002461000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-5-0x0000000002580000-0x0000000002581000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-7-0x0000000002560000-0x0000000002561000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-6-0x0000000002570000-0x0000000002571000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-8-0x0000000002520000-0x0000000002521000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-18-0x0000000002940000-0x0000000002941000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-17-0x0000000002910000-0x0000000002911000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-20-0x00000000025C0000-0x00000000025C1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-19-0x0000000002970000-0x0000000002972000-memory.dmp

    Filesize

    8KB

    Download

  • memory/4468-23-0x0000000002760000-0x0000000002761000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-22-0x00000000025F0000-0x00000000025F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-21-0x00000000025E0000-0x00000000025E1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-24-0x0000000002750000-0x0000000002751000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-25-0x0000000002740000-0x0000000002741000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-28-0x0000000002830000-0x0000000002831000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-27-0x0000000002820000-0x0000000002821000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-33-0x0000000002860000-0x0000000002861000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-32-0x0000000002850000-0x0000000002851000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-31-0x0000000002890000-0x0000000002891000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-34-0x00000000027C0000-0x00000000027C1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-36-0x00000000028F0000-0x00000000028F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-35-0x00000000028E0000-0x00000000028E1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-39-0x0000000002710000-0x0000000002714000-memory.dmp

    Filesize

    16KB

    Download

  • memory/4468-42-0x0000000002C20000-0x0000000002C21000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-41-0x00000000027A0000-0x00000000027A1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-44-0x00000000027F0000-0x00000000027F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-43-0x0000000002790000-0x0000000002791000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-40-0x0000000002730000-0x0000000002731000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-38-0x0000000002550000-0x0000000002551000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-37-0x0000000002590000-0x0000000002591000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-29-0x00000000027E0000-0x00000000027E1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-30-0x0000000002880000-0x0000000002881000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-26-0x0000000002780000-0x0000000002781000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-16-0x00000000028D0000-0x00000000028D1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-15-0x00000000028A0000-0x00000000028A1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-14-0x0000000002870000-0x0000000002871000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-13-0x0000000002840000-0x0000000002841000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-12-0x0000000002810000-0x0000000002811000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-11-0x0000000002770000-0x0000000002771000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-9-0x00000000025D0000-0x00000000025D1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-10-0x0000000002720000-0x0000000002722000-memory.dmp

    Filesize

    8KB

    Download

  • memory/4468-45-0x00000000027D0000-0x00000000027D1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-46-0x0000000002920000-0x0000000002921000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4468-53-0x0000000000400000-0x0000000000717000-memory.dmp

    Filesize

    3.1MB

    Download

  • memory/4468-54-0x00000000024D0000-0x0000000002512000-memory.dmp

    Filesize

    264KB

    Download

  • memory/4468-56-0x0000000002C20000-0x0000000002C21000-memory.dmp

    Filesize

    4KB

    Download