2f9cb9b348969431e9ab8d9449ca2eb73527c7ceee1c93df1fa447cca424fa64

Analysis

max time kernel
41s
max time network
38s
platform
windows10-1703_x64
resource
win10-20240404-es
resource tags

arch:x64arch:x86image:win10-20240404-eslocale:es-esos:windows10-1703-x64systemwindows
submitted
29/05/2024, 10:21

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

StandardCLIP_Setup_1.6.035_Demo.exe
Size

27.8MB
MD5

3b9968c166bb18220f83275a7b39cc44
SHA1

decb4896a287ff376f0a99213b208d49c0602310
SHA256

e8cbf904c9802b003f21560b01e6c70a4dee405e69e651cbc243660e56b961a6
SHA512

12f6e2f8460302ceaffc2706f5bf2e68875c73d0e4f231de9be1599eca029d60916222a3cf2c88ce608cf990c35fd877a907da85fe694199acf97de75671ba8a
SSDEEP

786432:QhRbh9FkAw49yILNtfSr1bsO2xM6LCXk2Ea:Yxh9FhPyI5kbsJ3xa

Score

4^/10

Malware Config

Signatures

Drops file in Program Files directory 4 IoCs

description	ioc	Process
File opened for modification	C:\Program Files (x86)\VSTPlugins\SIR Audio Tools\.StandardCLIP_tempc112c381.dll	StandardCLIP_Setup_1.6.035_Demo.exe
File opened for modification	C:\Program Files\VSTPlugins\SIR Audio Tools\.StandardCLIP_temp221fed7b.dll	StandardCLIP_Setup_1.6.035_Demo.exe
File opened for modification	C:\Program Files (x86)\Common Files\VST3\SIR Audio Tools\.StandardCLIP_tempe1eb799b.vst3	StandardCLIP_Setup_1.6.035_Demo.exe
File opened for modification	C:\Program Files\Common Files\VST3\SIR Audio Tools\.StandardCLIP_temp9bd83709.vst3	StandardCLIP_Setup_1.6.035_Demo.exe

Suspicious use of SetWindowsHookEx 4 IoCs

pid	Process
4492	StandardCLIP_Setup_1.6.035_Demo.exe
4492	StandardCLIP_Setup_1.6.035_Demo.exe
4492	StandardCLIP_Setup_1.6.035_Demo.exe
4492	StandardCLIP_Setup_1.6.035_Demo.exe

C:\Users\Admin\AppData\Local\Temp\StandardCLIP_Setup_1.6.035_Demo.exe
"C:\Users\Admin\AppData\Local\Temp\StandardCLIP_Setup_1.6.035_Demo.exe"
1⤵
- Drops file in Program Files directory
- Suspicious use of SetWindowsHookEx
PID:4492

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\ProgramData\SIR Audio Tools\PluginSetup\PluginSetup.settings

Filesize
397B

MD5
57f87fcb277bdb5c62c5035a52a396d7

SHA1
8e71f776c761f3016a4322d3d75990fa35508cc9

SHA256
b3da65cf0332438ce9e8bec048b7cbc87d31d8266971f555c8f78ae303ed4857

SHA512
418ff51a9132998a0457794a78e1196b8a22ec98f04ed623165a69ccf50818d9dc34568006c4c33654c6b6b1686388f277e22f830beace23cac9ae9d44d3f11c

Download Submit
C:\ProgramData\SIR Audio Tools\PluginSetup\PluginSetup.settings

Filesize
594B

MD5
897bb9e721f6233b01924ef8266fa531

SHA1
17904b50a0d90260afb788bd29d77b9b9b09ab44

SHA256
1e639617f44f779506898611b2e3acadfbbec8fd3b0b1c9350c647a97d970206

SHA512
3e8722cd3ca9797310add138367bdd1103ccce7e6894ffadd9fa9c8dd45ccf5962df6a6e8c465f59cf07e387519fdb8f35700a416efba6af257c6db20cc0882f

Download Submit
C:\ProgramData\SIR Audio Tools\PluginSetup\PluginSetup.settings

Filesize
1KB

MD5
4e6658f7dd142219806b8445a81772db

SHA1
9062a52fb7c79c2f7b4204554d09a654f3ae9515

SHA256
1bc5ee3814d7a6401a25d08616ee8975d5279d37b70227d8691f3509443b6708

SHA512
48598d2dd2a207d35d452fc5727d2b7eb4fa842b82285fcf30465b408298dd7ed722fac54b8f7f75973cf373ba4a941db99158184c6f6df4f7f39e2504657e77

Download Submit
C:\ProgramData\SIR Audio Tools\PluginSetup\PluginSetup.settings~RFe58117f.TMP

Filesize
188B

MD5
4c7ffe6fa91436d8a5bcce1f9034991d

SHA1
f9540d177c1966b0d9b8a72e319532f5bdf430a0

SHA256
5432cd24d0f85633a668caa4340988064cf69c4271db897d65876a10141c9dd6

SHA512
e269c5197ee8ab53f1ae65b6dfa92d5a7927ddce9fa4faf86326ae977a62ab0a1532ba35729ef577d6354d8160568d32baffc90d8b93365cecfe339e00fde352

Download Submit
C:\ProgramData\SIR Audio Tools\PluginSetup\PluginSetup_temp5c687329.settings

Filesize
819B

MD5
d61633d3a0db79778d6a9443ca8d1f84

SHA1
c2781f73cd716811a315525042d5997ab6390015

SHA256
7f46db16deef04a8aa9c8f4a01cba6449a774dde9e484f3567de177a1e6455cf

SHA512
6b5e86a9f0aacf150e29be311ab67451ca358718135a33dcd4bfd037347b761ff0674f00b8f0325cd77b9a1cf6942647042d1965bee7f0be7c39c415239f7410

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads