89ffa81135a2c1897e0231462cbaef78a62956db40590ae11cadc5b7b6cd59e6

Analysis

max time kernel
590s
max time network
364s
platform
windows7_x64
resource
win7-20240215-en
resource tags

arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
submitted
27-05-2024 12:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

.minecraft/resources/newmusic/hal4.ogg
Size

2.4MB
MD5

f04c3aa89e0a6fe3e3b7ab89ff871288
SHA1

5e7d63e75c6e042f452bc5e151276911ef92fed8
SHA256

7cd5e5908c5c06ece08336742e28921130cf0fb6cffc4968309509b945de236a
SHA512

f148c42e7224c8098f72a19689c3ea1df5ccd860a409107353abc8f620bfe654f2746f3b47f09ebde5ca00dbf12c2eda7feddd42332d00cfbd3a20bd0d69e67d
SSDEEP

49152:9USAEq7PnaDotGgBMR/bo40g5Z5RfB5EMbxw8YR3MhXMkcYsWtTuyK:9Af+Do0F10g5Jf/E4xyMtdntiT

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
2316	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2316	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	2316	vlc.exe
Token: SeIncBasePriorityPrivilege	2316	vlc.exe

Suspicious use of FindShellTrayWindow 9 IoCs

pid	Process
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe

Suspicious use of SendNotifyMessage 8 IoCs

pid	Process
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe
2316	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2316	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\.minecraft\resources\newmusic\hal4.ogg"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:2316

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2316-6-0x000007FEF74D0000-0x000007FEF7504000-memory.dmp

Filesize
208KB

Download
memory/2316-5-0x000000013FFF0000-0x00000001400E8000-memory.dmp

Filesize
992KB

Download
memory/2316-11-0x000007FEF7250000-0x000007FEF7267000-memory.dmp

Filesize
92KB

Download
memory/2316-7-0x000007FEF5A90000-0x000007FEF5D44000-memory.dmp

Filesize
2.7MB

Download
memory/2316-13-0x000007FEF6710000-0x000007FEF672D000-memory.dmp

Filesize
116KB

Download
memory/2316-12-0x000007FEF7230000-0x000007FEF7241000-memory.dmp

Filesize
68KB

Download
memory/2316-10-0x000007FEF72E0000-0x000007FEF72F1000-memory.dmp

Filesize
68KB

Download
memory/2316-9-0x000007FEFA400000-0x000007FEFA417000-memory.dmp

Filesize
92KB

Download
memory/2316-8-0x000007FEFB650000-0x000007FEFB668000-memory.dmp

Filesize
96KB

Download
memory/2316-15-0x000007FEF66F0000-0x000007FEF6701000-memory.dmp

Filesize
68KB

Download
memory/2316-18-0x000007FEF6210000-0x000007FEF6228000-memory.dmp

Filesize
96KB

Download
memory/2316-17-0x000007FEF6250000-0x000007FEF6271000-memory.dmp

Filesize
132KB

Download
memory/2316-16-0x000007FEF66B0000-0x000007FEF66EF000-memory.dmp

Filesize
252KB

Download
memory/2316-14-0x000007FEF5890000-0x000007FEF5A90000-memory.dmp

Filesize
2.0MB

Download
memory/2316-27-0x000007FEF4770000-0x000007FEF47D7000-memory.dmp

Filesize
412KB

Download
memory/2316-30-0x000007FEF46A0000-0x000007FEF46FC000-memory.dmp

Filesize
368KB

Download
memory/2316-36-0x000007FEF4490000-0x000007FEF44A6000-memory.dmp

Filesize
88KB

Download
memory/2316-39-0x000007FEF4340000-0x000007FEF4352000-memory.dmp

Filesize
72KB

Download
memory/2316-40-0x000007FEF41C0000-0x000007FEF433A000-memory.dmp

Filesize
1.5MB

Download
memory/2316-38-0x000007FEF4360000-0x000007FEF4371000-memory.dmp

Filesize
68KB

Download
memory/2316-19-0x000007FEF47E0000-0x000007FEF588B000-memory.dmp

Filesize
16.7MB

Download
memory/2316-37-0x000007FEF43C0000-0x000007FEF4485000-memory.dmp

Filesize
788KB

Download
memory/2316-35-0x000007FEF44B0000-0x000007FEF44C1000-memory.dmp

Filesize
68KB

Download
memory/2316-34-0x000007FEF44D0000-0x000007FEF44FF000-memory.dmp

Filesize
188KB

Download
memory/2316-33-0x000007FEFA450000-0x000007FEFA460000-memory.dmp

Filesize
64KB

Download
memory/2316-32-0x000007FEF4500000-0x000007FEF4517000-memory.dmp

Filesize
92KB

Download
memory/2316-31-0x000007FEF4520000-0x000007FEF4698000-memory.dmp

Filesize
1.5MB

Download
memory/2316-29-0x000007FEF60C0000-0x000007FEF60D1000-memory.dmp

Filesize
68KB

Download
memory/2316-28-0x000007FEF4700000-0x000007FEF476F000-memory.dmp

Filesize
444KB

Download
memory/2316-26-0x000007FEF60E0000-0x000007FEF6110000-memory.dmp

Filesize
192KB

Download
memory/2316-25-0x000007FEF6110000-0x000007FEF6128000-memory.dmp

Filesize
96KB

Download
memory/2316-24-0x000007FEF6130000-0x000007FEF6141000-memory.dmp

Filesize
68KB

Download
memory/2316-23-0x000007FEF6150000-0x000007FEF616B000-memory.dmp

Filesize
108KB

Download
memory/2316-22-0x000007FEF6170000-0x000007FEF6181000-memory.dmp

Filesize
68KB

Download
memory/2316-21-0x000007FEF6190000-0x000007FEF61A1000-memory.dmp

Filesize
68KB

Download
memory/2316-20-0x000007FEF61B0000-0x000007FEF61C1000-memory.dmp

Filesize
68KB

Download