Overview

overview

6

Static

static

3

PinballXP.zip

windows11-21h2-x64

1

FONT.dat

windows11-21h2-x64

3

PINBALL.dat

windows11-21h2-x64

3

PINBALL.mid

windows11-21h2-x64

1

PINBALL2.mid

windows11-21h2-x64

1

SOUND1.wav

windows11-21h2-x64

6

SOUND104.wav

windows11-21h2-x64

6

SOUND105.wav

windows11-21h2-x64

6

SOUND108.wav

windows11-21h2-x64

6

SOUND111.wav

windows11-21h2-x64

6

SOUND112.wav

windows11-21h2-x64

6

SOUND12.wav

windows11-21h2-x64

1

SOUND13.wav

windows11-21h2-x64

6

SOUND131.wav

windows11-21h2-x64

6

SOUND136.wav

windows11-21h2-x64

6

SOUND14.wav

windows11-21h2-x64

6

SOUND16.wav

windows11-21h2-x64

6

SOUND17.wav

windows11-21h2-x64

6

SOUND18.wav

windows11-21h2-x64

1

SOUND181.wav

windows11-21h2-x64

6

SOUND19.wav

windows11-21h2-x64

6

SOUND20.wav

windows11-21h2-x64

6

SOUND21.wav

windows11-21h2-x64

6

SOUND22.wav

windows11-21h2-x64

6

SOUND24.wav

windows11-21h2-x64

6

SOUND240.wav

windows11-21h2-x64

6

SOUND243.wav

windows11-21h2-x64

6

SOUND25.wav

windows11-21h2-x64

6

SOUND26.wav

windows11-21h2-x64

6

SOUND27.wav

windows11-21h2-x64

1

SOUND28.wav

windows11-21h2-x64

6

SOUND29.wav

windows11-21h2-x64

6

Analysis

  • max time kernel
    146s
  • max time network
    150s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240419-en
  • resource tags

    arch:x64arch:x86image:win11-20240419-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    30-04-2024 07:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    PINBALL.mid

  • Size

    106KB

  • MD5

    981b561f5f136cd7e3ee70c3fbc4e0c9

  • SHA1

    3dfc2b292d96f38ad4cd4d948d751ba48a45ddbd

  • SHA256

    b030f95b0d3b7b582a8c030ce548e11ab9457e2281f615af1e291401ffb0be41

  • SHA512

    dfa2f29036ca23988ec6dd1ba3bcc56f1f13a4474ea815f83e61652cbb4892990f102e5a1f8a8a7056ed17ca09405afb30c22f7b98ed5b043ce7c559d01bb851

  • SSDEEP

    1536:GpS5pS5pS5pS5pS5pS5pS5pS5pSOrrrrrrrrm:Go5o5o5o5o5o5o5o5oV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 6 IoCs
  • Suspicious use of SendNotifyMessage 5 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\PINBALL.mid"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:1504

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1504-5-0x00007FF695300000-0x00007FF6953F8000-memory.dmp

    Filesize

    992KB

    Download

  • memory/1504-6-0x00007FF9048C0000-0x00007FF9048F4000-memory.dmp

    Filesize

    208KB

    Download

  • memory/1504-8-0x00007FF9069D0000-0x00007FF9069E8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1504-14-0x00007FF9018C0000-0x00007FF9018D1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1504-26-0x00007FF900F40000-0x00007FF900FA7000-memory.dmp

    Filesize

    412KB

    Download

  • memory/1504-25-0x00007FF900FB0000-0x00007FF900FE0000-memory.dmp

    Filesize

    192KB

    Download

  • memory/1504-28-0x00007FF900EC0000-0x00007FF900F3C000-memory.dmp

    Filesize

    496KB

    Download

  • memory/1504-31-0x00007FF8F03D0000-0x00007FF8F03E7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1504-30-0x00007FF900BA0000-0x00007FF900BF7000-memory.dmp

    Filesize

    348KB

    Download

  • memory/1504-29-0x00007FF900E20000-0x00007FF900E31000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1504-24-0x00007FF900FE0000-0x00007FF900FF8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1504-27-0x00007FF8EEA70000-0x00007FF8EFB20000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/1504-23-0x00007FF901000000-0x00007FF901011000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1504-22-0x00007FF901020000-0x00007FF90103B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/1504-21-0x00007FF901040000-0x00007FF901051000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1504-20-0x00007FF901060000-0x00007FF901071000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1504-19-0x00007FF901080000-0x00007FF901091000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1504-18-0x00007FF901820000-0x00007FF901838000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1504-17-0x00007FF901840000-0x00007FF901861000-memory.dmp

    Filesize

    132KB

    Download

  • memory/1504-13-0x00007FF9018E0000-0x00007FF9018FD000-memory.dmp

    Filesize

    116KB

    Download

  • memory/1504-12-0x00007FF901900000-0x00007FF901911000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1504-11-0x00007FF901A30000-0x00007FF901A47000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1504-10-0x00007FF901CD0000-0x00007FF901CE1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1504-9-0x00007FF904630000-0x00007FF904647000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1504-7-0x00007FF8EFD50000-0x00007FF8F0006000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/1504-16-0x00007FF901870000-0x00007FF9018B1000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1504-15-0x00007FF901170000-0x00007FF90137B000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1504-32-0x000002DB0F7B0000-0x000002DB1101F000-memory.dmp

    Filesize

    24.4MB

    Download

  • memory/1504-55-0x00007FF8EEA70000-0x00007FF8EFB20000-memory.dmp

    Filesize

    16.7MB

    Download