675163039760e2449be95b2476a88563edc65e39cc47cdf9e22808dd3246a538

Analysis

max time kernel
131s
max time network
127s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
02/08/2024, 15:26

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Phonk CD 2.0/track3.ogg
Size

5.2MB
MD5

4fccce92cd79f6e8164e29a27dbbf013
SHA1

f16646ab3972b9c2c8af89e3d5b5cd9acbd1d56c
SHA256

63601509a357899b7c30ae07495f6269dcdbf43b2e9acd3d19e6edfd29dd9eaa
SHA512

dabdb57a902a3599cb9d0d15e62c09af3cac7cc67f44d8d3d39966f44b778dcc22bfafe7ecb44c461326b52da9f672c1e0a3ae4deef36c3f44402246dfafebc8
SSDEEP

98304:6aLMxw5y9w8A2KqOvSSF2tHJKUNNaIkDgKKB5BEkWrlQryL43SH7fdF8xPuWd2A/:JYC5y+cKqz5KXRRcBMQ2L46fdF8x27A/

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
1940	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
1940	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	1940	vlc.exe
Token: SeIncBasePriorityPrivilege	1940	vlc.exe

Suspicious use of FindShellTrayWindow 5 IoCs

pid	Process
1940	vlc.exe
1940	vlc.exe
1940	vlc.exe
1940	vlc.exe
1940	vlc.exe

Suspicious use of SendNotifyMessage 4 IoCs

pid	Process
1940	vlc.exe
1940	vlc.exe
1940	vlc.exe
1940	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1940	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Phonk CD 2.0\track3.ogg"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:1940

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1940-6-0x000007FEFABE0000-0x000007FEFAC14000-memory.dmp

Filesize
208KB

Download
memory/1940-5-0x000000013F410000-0x000000013F508000-memory.dmp

Filesize
992KB

Download
memory/1940-8-0x000007FEFBAD0000-0x000007FEFBAE8000-memory.dmp

Filesize
96KB

Download
memory/1940-13-0x000007FEFA880000-0x000007FEFA89D000-memory.dmp

Filesize
116KB

Download
memory/1940-25-0x000007FEF5DF0000-0x000007FEF5E20000-memory.dmp

Filesize
192KB

Download
memory/1940-24-0x000007FEF6540000-0x000007FEF6558000-memory.dmp

Filesize
96KB

Download
memory/1940-23-0x000007FEF6900000-0x000007FEF6911000-memory.dmp

Filesize
68KB

Download
memory/1940-22-0x000007FEF6920000-0x000007FEF693B000-memory.dmp

Filesize
108KB

Download
memory/1940-21-0x000007FEF6940000-0x000007FEF6951000-memory.dmp

Filesize
68KB

Download
memory/1940-20-0x000007FEF6960000-0x000007FEF6971000-memory.dmp

Filesize
68KB

Download
memory/1940-19-0x000007FEF7510000-0x000007FEF7521000-memory.dmp

Filesize
68KB

Download
memory/1940-40-0x000007FEF4870000-0x000007FEF4882000-memory.dmp

Filesize
72KB

Download
memory/1940-26-0x000007FEF4D40000-0x000007FEF5DF0000-memory.dmp

Filesize
16.7MB

Download
memory/1940-41-0x000007FEF46F0000-0x000007FEF486A000-memory.dmp

Filesize
1.5MB

Download
memory/1940-39-0x000007FEF4890000-0x000007FEF48A1000-memory.dmp

Filesize
68KB

Download
memory/1940-38-0x000007FEF48D0000-0x000007FEF48E5000-memory.dmp

Filesize
84KB

Download
memory/1940-37-0x000007FEF48F0000-0x000007FEF49B5000-memory.dmp

Filesize
788KB

Download
memory/1940-36-0x000007FEF49C0000-0x000007FEF49D6000-memory.dmp

Filesize
88KB

Download
memory/1940-35-0x000007FEF49E0000-0x000007FEF49F1000-memory.dmp

Filesize
68KB

Download
memory/1940-34-0x000007FEF4A00000-0x000007FEF4A2F000-memory.dmp

Filesize
188KB

Download
memory/1940-33-0x000007FEFAFB0000-0x000007FEFAFC0000-memory.dmp

Filesize
64KB

Download
memory/1940-32-0x000007FEF4A30000-0x000007FEF4A47000-memory.dmp

Filesize
92KB

Download
memory/1940-31-0x000007FEF4A50000-0x000007FEF4BD0000-memory.dmp

Filesize
1.5MB

Download
memory/1940-30-0x000007FEF4BD0000-0x000007FEF4C2C000-memory.dmp

Filesize
368KB

Download
memory/1940-29-0x000007FEF4C30000-0x000007FEF4C41000-memory.dmp

Filesize
68KB

Download
memory/1940-28-0x000007FEF4C50000-0x000007FEF4CCC000-memory.dmp

Filesize
496KB

Download
memory/1940-27-0x000007FEF4CD0000-0x000007FEF4D37000-memory.dmp

Filesize
412KB

Download
memory/1940-14-0x000007FEF5E20000-0x000007FEF602B000-memory.dmp

Filesize
2.0MB

Download
memory/1940-18-0x000007FEF7530000-0x000007FEF7548000-memory.dmp

Filesize
96KB

Download
memory/1940-17-0x000007FEF7550000-0x000007FEF7571000-memory.dmp

Filesize
132KB

Download
memory/1940-16-0x000007FEFA6F0000-0x000007FEFA731000-memory.dmp

Filesize
260KB

Download
memory/1940-15-0x000007FEFA860000-0x000007FEFA871000-memory.dmp

Filesize
68KB

Download
memory/1940-7-0x000007FEF6030000-0x000007FEF62E6000-memory.dmp

Filesize
2.7MB

Download
memory/1940-12-0x000007FEFA8A0000-0x000007FEFA8B1000-memory.dmp

Filesize
68KB

Download
memory/1940-11-0x000007FEFA8C0000-0x000007FEFA8D7000-memory.dmp

Filesize
92KB

Download
memory/1940-10-0x000007FEFA8E0000-0x000007FEFA8F1000-memory.dmp

Filesize
68KB

Download
memory/1940-9-0x000007FEFAE60000-0x000007FEFAE77000-memory.dmp

Filesize
92KB

Download