Analysis

  • max time kernel
    51s
  • max time network
    33s
  • platform
    windows10-1703_x64
  • resource
    win10-20240611-en
  • resource tags

    arch:x64arch:x86image:win10-20240611-enlocale:en-usos:windows10-1703-x64system
  • submitted
    26/06/2024, 16:39

General

  • Target

    python-MidiToVirtualPianoMacro-master/CorridorsOfTime.mid

  • Size

    11KB

  • MD5

    249330d2e88ef6fce90a16e446c33d5d

  • SHA1

    84313a86afa035695bd5e56790a09133e8760d75

  • SHA256

    79dff6bced06af2340a45b0b0535eb2770e4ee5bb08dfec789708a8f5307a756

  • SHA512

    dadd3e7510dd67761c274e74b6017e2e19ab25e2f7f46b5e917b882cbef15c4ccc5537ca1270590038e697724fbac5ed4ccacd4a524efe02c3fa7a5f9d4d3264

  • SSDEEP

    192:4byE9i77sm4QEWncMsjgS5LDap6CYZcJ5pDdmaU4DJpq+az6Pw:HEsXT4vWcMsjHZasZMmaJLq+aziw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 6 IoCs
  • Suspicious use of SendNotifyMessage 5 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\python-MidiToVirtualPianoMacro-master\CorridorsOfTime.mid"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:1420

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1420-6-0x00007FFB70D90000-0x00007FFB70DC4000-memory.dmp

    Filesize

    208KB

  • memory/1420-5-0x00007FF71C850000-0x00007FF71C948000-memory.dmp

    Filesize

    992KB

  • memory/1420-11-0x00007FFB70D00000-0x00007FFB70D17000-memory.dmp

    Filesize

    92KB

  • memory/1420-14-0x00007FFB6DC00000-0x00007FFB6DC11000-memory.dmp

    Filesize

    68KB

  • memory/1420-13-0x00007FFB6DC20000-0x00007FFB6DC3D000-memory.dmp

    Filesize

    116KB

  • memory/1420-12-0x00007FFB6DC40000-0x00007FFB6DC51000-memory.dmp

    Filesize

    68KB

  • memory/1420-7-0x00007FFB6C7A0000-0x00007FFB6CA56000-memory.dmp

    Filesize

    2.7MB

  • memory/1420-8-0x00007FFB714A0000-0x00007FFB714B8000-memory.dmp

    Filesize

    96KB

  • memory/1420-10-0x00007FFB70D20000-0x00007FFB70D31000-memory.dmp

    Filesize

    68KB

  • memory/1420-9-0x00007FFB70D40000-0x00007FFB70D57000-memory.dmp

    Filesize

    92KB

  • memory/1420-15-0x00007FFB5E5A0000-0x00007FFB5E7AB000-memory.dmp

    Filesize

    2.0MB

  • memory/1420-23-0x00007FFB6D3B0000-0x00007FFB6D3CB000-memory.dmp

    Filesize

    108KB

  • memory/1420-22-0x00007FFB6D3D0000-0x00007FFB6D3E1000-memory.dmp

    Filesize

    68KB

  • memory/1420-21-0x00007FFB6D5C0000-0x00007FFB6D5D1000-memory.dmp

    Filesize

    68KB

  • memory/1420-20-0x00007FFB6D5E0000-0x00007FFB6D5F1000-memory.dmp

    Filesize

    68KB

  • memory/1420-19-0x00007FFB6D600000-0x00007FFB6D618000-memory.dmp

    Filesize

    96KB

  • memory/1420-18-0x00007FFB6D6C0000-0x00007FFB6D6E1000-memory.dmp

    Filesize

    132KB

  • memory/1420-17-0x00007FFB6DBB0000-0x00007FFB6DBF1000-memory.dmp

    Filesize

    260KB

  • memory/1420-16-0x00007FFB5D4F0000-0x00007FFB5E5A0000-memory.dmp

    Filesize

    16.7MB

  • memory/1420-35-0x00007FFB5D4F0000-0x00007FFB5E5A0000-memory.dmp

    Filesize

    16.7MB