Overview

overview

7

Static

static

3

reaper716_...ll.exe

windows10-1703-x64

7

$INSTDIR$_....0.zip

windows10-1703-x64

1

$INSTDIR$_....0.zip

windows10-1703-x64

1

$INSTDIR$_...eabank

windows10-1703-x64

3

$INSTDIR$_...xe.wav

windows10-1703-x64

1

$INSTDIR$_...an.wav

windows10-1703-x64

1

$INSTDIR$_...mp.wav

windows10-1703-x64

1

$INSTDIR$_...70.wav

windows10-1703-x64

6

$INSTDIR$_...mp.wav

windows10-1703-x64

1

$INSTDIR$_...70.wav

windows10-1703-x64

1

$INSTDIR$_...in.wav

windows10-1703-x64

1

$INSTDIR$_...xe.wav

windows10-1703-x64

6

$INSTDIR$_...in.wav

windows10-1703-x64

1

$INSTDIR$_...in.wav

windows10-1703-x64

1

$INSTDIR$_...in.wav

windows10-1703-x64

1

$INSTDIR$_...30.wav

windows10-1703-x64

1

$INSTDIR$_...ng.txt

windows10-1703-x64

1

$INSTDIR$_...ic.txt

windows10-1703-x64

1

$INSTDIR$_...an.txt

windows10-1703-x64

1

$INSTDIR$_...or.txt

windows10-1703-x64

1

$INSTDIR$_...an.txt

windows10-1703-x64

1

$INSTDIR$_...an.txt

windows10-1703-x64

1

$INSTDIR$_...or.txt

windows10-1703-x64

1

$INSTDIR$_...or.txt

windows10-1703-x64

1

$INSTDIR$_...an.txt

windows10-1703-x64

1

$INSTDIR$_...or.txt

windows10-1703-x64

1

$INSTDIR$_...or.txt

windows10-1703-x64

1

$INSTDIR$_...or.txt

windows10-1703-x64

1

$INSTDIR$_...an.txt

windows10-1703-x64

1

$INSTDIR$_...ne.txt

windows10-1703-x64

1

$INSTDIR$_...es.txt

windows10-1703-x64

1

$INSTDIR$_... 1.txt

windows10-1703-x64

1

Analysis

  • max time kernel
    1791s
  • max time network
    1608s
  • platform
    windows10-1703_x64
  • resource
    win10-20240404-es
  • resource tags

    arch:x64arch:x86image:win10-20240404-eslocale:es-esos:windows10-1703-x64systemwindows
  • submitted
    20-06-2024 08:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $INSTDIR$_8_/Data/amp_models/Dumble Overdrive Special - Tweed Deluxe.wav

  • Size

    4KB

  • MD5

    33b31fd3bf3a7fa66274b52374247898

  • SHA1

    cbecbfe0271578087e192157ea5c6924bc44fc6d

  • SHA256

    5a06fbba771a89783c957822e4dd92852ce12a1d47c604fdf220769f41b94480

  • SHA512

    656f131e473ed3303538124e7823a03cbd00b33cc44ceb7783e2b7a53cd43c98cc4660b015265b191e8a7e652df85046415ee8f505c08fdfec50a92e1d7c9136

  • SSDEEP

    6:s0rtxTx4/LasekRvKBjOGgD4qZ04U1xnVqzXIuOk0uFa+9sMP4:ssxOOJerFD4qZI1xnQTguK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 4 IoCs
  • Suspicious use of FindShellTrayWindow 8 IoCs
  • Suspicious use of SendNotifyMessage 7 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\$INSTDIR$_8_\Data\amp_models\Dumble Overdrive Special - Tweed Deluxe.wav"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:4596
  • C:\Windows\system32\AUDIODG.EXE
    C:\Windows\system32\AUDIODG.EXE 0x3d0
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:4008

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4596-7-0x00007FF7FCE90000-0x00007FF7FCF88000-memory.dmp

    Filesize

    992KB

    Download

  • memory/4596-8-0x00007FFCFFAE0000-0x00007FFCFFB14000-memory.dmp

    Filesize

    208KB

    Download

  • memory/4596-12-0x00007FFCFFAA0000-0x00007FFCFFAB1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/4596-15-0x00007FFCFF8B0000-0x00007FFCFF8CD000-memory.dmp

    Filesize

    116KB

    Download

  • memory/4596-16-0x00007FFCFD310000-0x00007FFCFD321000-memory.dmp

    Filesize

    68KB

    Download

  • memory/4596-9-0x00007FFCED5B0000-0x00007FFCED866000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/4596-14-0x00007FFCFFA60000-0x00007FFCFFA71000-memory.dmp

    Filesize

    68KB

    Download

  • memory/4596-13-0x00007FFCFFA80000-0x00007FFCFFA97000-memory.dmp

    Filesize

    92KB

    Download

  • memory/4596-11-0x00007FFCFFAC0000-0x00007FFCFFAD7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/4596-10-0x00007FFD00370000-0x00007FFD00388000-memory.dmp

    Filesize

    96KB

    Download

  • memory/4596-17-0x00007FFCFC4E0000-0x00007FFCFC6EB000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4596-25-0x00007FFCFCF70000-0x00007FFCFCF8B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/4596-24-0x00007FFCFCF90000-0x00007FFCFCFA1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/4596-23-0x00007FFCFCFB0000-0x00007FFCFCFC1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/4596-22-0x00007FFCFCFD0000-0x00007FFCFCFE1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/4596-21-0x00007FFCFCFF0000-0x00007FFCFD008000-memory.dmp

    Filesize

    96KB

    Download

  • memory/4596-20-0x00007FFCFD2E0000-0x00007FFCFD301000-memory.dmp

    Filesize

    132KB

    Download

  • memory/4596-19-0x00007FFCFD010000-0x00007FFCFD051000-memory.dmp

    Filesize

    260KB

    Download

  • memory/4596-18-0x00007FFCEC500000-0x00007FFCED5B0000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/4596-37-0x00007FFCEC500000-0x00007FFCED5B0000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/4596-56-0x00007FFCEC500000-0x00007FFCED5B0000-memory.dmp

    Filesize

    16.7MB

    Download