Overview

overview

3

Static

static

3

MIRP1.6.8.3.zip

windows10-1703-x64

1

MIRP1.6.8.3.zip

windows10-2004-x64

1

A Turn Bac...o).mid

windows10-1703-x64

1

A Turn Bac...o).mid

windows10-2004-x64

1

LICENSE

windows10-1703-x64

1

LICENSE

windows10-2004-x64

1

MIRP.exe

windows10-1703-x64

1

MIRP.exe

windows10-2004-x64

1

default.mlf

windows10-1703-x64

3

default.mlf

windows10-2004-x64

3

Resubmissions

06/07/2024, 00:42

240706-a2k6vszhpr 3

06/07/2024, 00:39

240706-azwvksshpf 3

Analysis

  • max time kernel
    591s
  • max time network
    404s
  • platform
    windows10-1703_x64
  • resource
    win10-20240404-fr
  • resource tags

    arch:x64arch:x86image:win10-20240404-frlocale:fr-fros:windows10-1703-x64systemwindows
  • submitted
    06/07/2024, 00:42

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    A Turn Back (Piano).mid

  • Size

    13KB

  • MD5

    ff6fa4dceb059f14560280856390b5e8

  • SHA1

    ec3e123dffeb1814084e90a84f9cc698d30070ba

  • SHA256

    0480e68863c334cead15a00a9461485db0838717cff26ae0960077c7db557c9a

  • SHA512

    69d42f77ea81419875c26cf49b49e8258629d6b3f9ba01940f2085f52009fe1f59ba4eef9d00443624a51b82b3ab390986c43b9bf2a0087ffaa7b90fe0a8050e

  • SSDEEP

    192:2STtoEf6U5Q4jDfH079fL/4Li+xSJFyZuZnrnHasdB0wYz6Cj7GNClCiP:FTtff6bsot/4m+xLZOn5PVCj7GNwH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 9 IoCs
  • Suspicious use of SendNotifyMessage 8 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\A Turn Back (Piano).mid"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:3900

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/3900-5-0x00007FF6F3D90000-0x00007FF6F3E88000-memory.dmp

          Filesize

          992KB

          Download

        • memory/3900-6-0x00007FFAF5100000-0x00007FFAF5134000-memory.dmp

          Filesize

          208KB

          Download

        • memory/3900-14-0x00007FFAF16D0000-0x00007FFAF16E1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/3900-13-0x00007FFAF16F0000-0x00007FFAF170D000-memory.dmp

          Filesize

          116KB

          Download

        • memory/3900-12-0x00007FFAF1710000-0x00007FFAF1721000-memory.dmp

          Filesize

          68KB

          Download

        • memory/3900-15-0x00007FFAF0890000-0x00007FFAF0A9B000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3900-11-0x00007FFAF1730000-0x00007FFAF1747000-memory.dmp

          Filesize

          92KB

          Download

        • memory/3900-10-0x00007FFAF1750000-0x00007FFAF1761000-memory.dmp

          Filesize

          68KB

          Download

        • memory/3900-9-0x00007FFAF1770000-0x00007FFAF1787000-memory.dmp

          Filesize

          92KB

          Download

        • memory/3900-7-0x00007FFAF1940000-0x00007FFAF1BF6000-memory.dmp

          Filesize

          2.7MB

          Download

        • memory/3900-8-0x00007FFAF50B0000-0x00007FFAF50C8000-memory.dmp

          Filesize

          96KB

          Download

        • memory/3900-17-0x00007FFAF1680000-0x00007FFAF16C1000-memory.dmp

          Filesize

          260KB

          Download

        • memory/3900-19-0x00007FFAF1630000-0x00007FFAF1648000-memory.dmp

          Filesize

          96KB

          Download

        • memory/3900-18-0x00007FFAF1650000-0x00007FFAF1671000-memory.dmp

          Filesize

          132KB

          Download

        • memory/3900-21-0x00007FFAF15F0000-0x00007FFAF1601000-memory.dmp

          Filesize

          68KB

          Download

        • memory/3900-20-0x00007FFAF1610000-0x00007FFAF1621000-memory.dmp

          Filesize

          68KB

          Download

        • memory/3900-16-0x00007FFAE0EC0000-0x00007FFAE1F70000-memory.dmp

          Filesize

          16.7MB

          Download

        • memory/3900-23-0x00007FFAF15B0000-0x00007FFAF15CB000-memory.dmp

          Filesize

          108KB

          Download

        • memory/3900-22-0x00007FFAF15D0000-0x00007FFAF15E1000-memory.dmp

          Filesize

          68KB

          Download

        • memory/3900-24-0x00007FFAF0450000-0x00007FFAF0461000-memory.dmp

          Filesize

          68KB

          Download

        • memory/3900-36-0x00007FFAE0EC0000-0x00007FFAE1F70000-memory.dmp

          Filesize

          16.7MB

          Download