Overview

overview

6

Static

static

1

TOYOTA CHA...RS.zip

windows7-x64

1

TOYOTA CHA...RS.zip

windows10-2004-x64

1

art/sound/...D.json

windows7-x64

3

art/sound/...D.json

windows10-2004-x64

3

art/sound/...D.json

windows7-x64

3

art/sound/...D.json

windows10-2004-x64

3

art/sound/...D.json

windows7-x64

3

art/sound/...D.json

windows10-2004-x64

3

art/sound/...52.wav

windows7-x64

1

art/sound/...52.wav

windows10-2004-x64

6

art/sound/..._P.wav

windows7-x64

1

art/sound/..._P.wav

windows10-2004-x64

6

art/sound/...26.wav

windows7-x64

1

art/sound/...26.wav

windows10-2004-x64

6

art/sound/..._P.wav

windows7-x64

1

art/sound/..._P.wav

windows10-2004-x64

6

art/sound/...05.wav

windows7-x64

1

art/sound/...05.wav

windows10-2004-x64

6

art/sound/..._P.wav

windows7-x64

1

art/sound/..._P.wav

windows10-2004-x64

6

art/sound/...89.wav

windows7-x64

1

art/sound/...89.wav

windows10-2004-x64

6

art/sound/..._P.wav

windows7-x64

1

art/sound/..._P.wav

windows10-2004-x64

6

art/sound/...80.wav

windows7-x64

1

art/sound/...80.wav

windows10-2004-x64

6

art/sound/..._P.wav

windows7-x64

1

art/sound/..._P.wav

windows10-2004-x64

6

art/sound/...76.wav

windows7-x64

1

art/sound/...76.wav

windows10-2004-x64

6

art/sound/..._P.wav

windows7-x64

1

art/sound/..._P.wav

windows10-2004-x64

6

Analysis

  • max time kernel
    141s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    04-05-2024 21:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    art/sound/engine/0BE1F1A5405C187702AEE893B40ABF5F/EXH_1205_P.wav

  • Size

    190KB

  • MD5

    d315a532cca7a7aa4a07532999f4ddb5

  • SHA1

    1d05f7da2f829ea1c7741d4f8be4138ddc44c5f7

  • SHA256

    182feec7099df03c4cf76eb93a3381f5341f746c58cb6d237f270f738fa4752c

  • SHA512

    a9599dd37a2bb5c4081aca52af46784721269696b723f63726e52a830d13e6da823d391dc402c8bb9d3dcc74ef5838806ab1db0a30f0c12b609d4d215fccd2ae

  • SSDEEP

    3072:wtLjBVoOmvh5lhmZ5YzSVhUsRhiDJ7D09tKMXM8WgCaLDPZ8UF+YN8ENKzS8heTB:MCJ4Dh0PjEF+0NKz7CH+E

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 8 IoCs
  • Suspicious use of SendNotifyMessage 7 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\art\sound\engine\0BE1F1A5405C187702AEE893B40ABF5F\EXH_1205_P.wav"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:2388

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2388-6-0x000007FEFAB90000-0x000007FEFABC4000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2388-5-0x000000013FF20000-0x0000000140018000-memory.dmp

    Filesize

    992KB

    Download

  • memory/2388-8-0x000007FEFBA00000-0x000007FEFBA18000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2388-9-0x000007FEFAD20000-0x000007FEFAD37000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2388-11-0x000007FEF7A40000-0x000007FEF7A57000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2388-10-0x000007FEF7C60000-0x000007FEF7C71000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-12-0x000007FEF7A20000-0x000007FEF7A31000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-13-0x000007FEF7A00000-0x000007FEF7A1D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/2388-25-0x000007FEF6DF0000-0x000007FEF6E20000-memory.dmp

    Filesize

    192KB

    Download

  • memory/2388-29-0x000007FEF6890000-0x000007FEF68A1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-36-0x000007FEF4E60000-0x000007FEF4E72000-memory.dmp

    Filesize

    72KB

    Download

  • memory/2388-50-0x000007FEF4940000-0x000007FEF4956000-memory.dmp

    Filesize

    88KB

    Download

  • memory/2388-49-0x000007FEF4960000-0x000007FEF4971000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-48-0x000007FEF4980000-0x000007FEF4991000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-26-0x000007FEF4F30000-0x000007FEF5FDB000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/2388-47-0x000007FEF49A0000-0x000007FEF49B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-46-0x000007FEF49C0000-0x000007FEF49D4000-memory.dmp

    Filesize

    80KB

    Download

  • memory/2388-45-0x000007FEF49E0000-0x000007FEF49F3000-memory.dmp

    Filesize

    76KB

    Download

  • memory/2388-44-0x000007FEF4A00000-0x000007FEF4B7A000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/2388-43-0x000007FEF4B80000-0x000007FEF4B92000-memory.dmp

    Filesize

    72KB

    Download

  • memory/2388-42-0x000007FEF4BA0000-0x000007FEF4BB1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-41-0x000007FEF4BE0000-0x000007FEF4BF5000-memory.dmp

    Filesize

    84KB

    Download

  • memory/2388-40-0x000007FEF4C00000-0x000007FEF4C16000-memory.dmp

    Filesize

    88KB

    Download

  • memory/2388-39-0x000007FEF4C20000-0x000007FEF4C31000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-38-0x000007FEF4C40000-0x000007FEF4C6F000-memory.dmp

    Filesize

    188KB

    Download

  • memory/2388-37-0x000007FEFAD10000-0x000007FEFAD20000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2388-35-0x000007FEF4E80000-0x000007FEF4E91000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-34-0x000007FEF4EA0000-0x000007FEF4EC3000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2388-33-0x000007FEF6810000-0x000007FEF6827000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2388-32-0x000007FEF4ED0000-0x000007FEF4EF4000-memory.dmp

    Filesize

    144KB

    Download

  • memory/2388-31-0x000007FEF4F00000-0x000007FEF4F28000-memory.dmp

    Filesize

    160KB

    Download

  • memory/2388-30-0x000007FEF6830000-0x000007FEF6886000-memory.dmp

    Filesize

    344KB

    Download

  • memory/2388-28-0x000007FEF68B0000-0x000007FEF691F000-memory.dmp

    Filesize

    444KB

    Download

  • memory/2388-27-0x000007FEF6960000-0x000007FEF69C7000-memory.dmp

    Filesize

    412KB

    Download

  • memory/2388-24-0x000007FEF6E20000-0x000007FEF6E38000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2388-23-0x000007FEF6E40000-0x000007FEF6E51000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-14-0x000007FEF5FE0000-0x000007FEF61E0000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2388-22-0x000007FEF6E60000-0x000007FEF6E7B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/2388-21-0x000007FEF73F0000-0x000007FEF7401000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-20-0x000007FEF7410000-0x000007FEF7421000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-19-0x000007FEF7430000-0x000007FEF7441000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-18-0x000007FEF7980000-0x000007FEF7998000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2388-17-0x000007FEF7450000-0x000007FEF7471000-memory.dmp

    Filesize

    132KB

    Download

  • memory/2388-16-0x000007FEF79A0000-0x000007FEF79DF000-memory.dmp

    Filesize

    252KB

    Download

  • memory/2388-15-0x000007FEF79E0000-0x000007FEF79F1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2388-7-0x000007FEF61E0000-0x000007FEF6494000-memory.dmp

    Filesize

    2.7MB

    Download