ffd4aee6de78cd447ccf84f5a4e331c0955a98b50a9982073adb867f79fd94bb

Analysis

max time kernel
141s
max time network
145s
platform
windows10-1703_x64
resource
win10-20240404-es
resource tags

arch:x64arch:x86image:win10-20240404-eslocale:es-esos:windows10-1703-x64systemwindows
submitted
07/08/2024, 08:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

resources/assets/assets.d.ts
Size

623B
MD5

b9d1467e2b8b9e67630f784255b565dd
SHA1

67f2a748753e51c6b782c2a257a9e3b088cffacd
SHA256

d1688c0a786e3d9c4dd1a71178fcd06230eb5eba9cd64421015b98c170cdeec6
SHA512

f29bd26c1f3e7c685c9e85acd62b78e0880bd58b00094e01088beaaf141ae8ad5b74589e164b7f4a2882de40f98158443c9dfe6b90ad2a7ba8a957d4202bcb10

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
1960	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
1960	vlc.exe

Suspicious use of FindShellTrayWindow 8 IoCs

pid	Process
1960	vlc.exe
1960	vlc.exe
1960	vlc.exe
1960	vlc.exe
1960	vlc.exe
1960	vlc.exe
1960	vlc.exe
1960	vlc.exe

Suspicious use of SendNotifyMessage 7 IoCs

pid	Process
1960	vlc.exe
1960	vlc.exe
1960	vlc.exe
1960	vlc.exe
1960	vlc.exe
1960	vlc.exe
1960	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1960	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\resources\assets\assets.d.ts"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:1960

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1960-6-0x00007FFCACBE0000-0x00007FFCACC14000-memory.dmp

Filesize
208KB

Download
memory/1960-5-0x00007FF74FB30000-0x00007FF74FC28000-memory.dmp

Filesize
992KB

Download
memory/1960-11-0x00007FFCACB10000-0x00007FFCACB27000-memory.dmp

Filesize
92KB

Download
memory/1960-12-0x00007FFCACAF0000-0x00007FFCACB01000-memory.dmp

Filesize
68KB

Download
memory/1960-14-0x00007FFCACAB0000-0x00007FFCACAC1000-memory.dmp

Filesize
68KB

Download
memory/1960-13-0x00007FFCACAD0000-0x00007FFCACAED000-memory.dmp

Filesize
116KB

Download
memory/1960-7-0x00007FFCA9490000-0x00007FFCA9746000-memory.dmp

Filesize
2.7MB

Download
memory/1960-8-0x00007FFCAD1C0000-0x00007FFCAD1D8000-memory.dmp

Filesize
96KB

Download
memory/1960-10-0x00007FFCACB30000-0x00007FFCACB41000-memory.dmp

Filesize
68KB

Download
memory/1960-16-0x00007FFCAC800000-0x00007FFCAC841000-memory.dmp

Filesize
260KB

Download
memory/1960-9-0x00007FFCACBC0000-0x00007FFCACBD7000-memory.dmp

Filesize
92KB

Download
memory/1960-15-0x00007FFCA9280000-0x00007FFCA948B000-memory.dmp

Filesize
2.0MB

Download
memory/1960-23-0x00007FFCA9220000-0x00007FFCA923B000-memory.dmp

Filesize
108KB

Download
memory/1960-22-0x00007FFCA9240000-0x00007FFCA9251000-memory.dmp

Filesize
68KB

Download
memory/1960-21-0x00007FFCA9260000-0x00007FFCA9271000-memory.dmp

Filesize
68KB

Download
memory/1960-20-0x00007FFCAC790000-0x00007FFCAC7A1000-memory.dmp

Filesize
68KB

Download
memory/1960-19-0x00007FFCAC7B0000-0x00007FFCAC7C8000-memory.dmp

Filesize
96KB

Download
memory/1960-18-0x00007FFCAC7D0000-0x00007FFCAC7F1000-memory.dmp

Filesize
132KB

Download
memory/1960-17-0x00007FFC983C0000-0x00007FFC99470000-memory.dmp

Filesize
16.7MB

Download
memory/1960-36-0x00007FFC983C0000-0x00007FFC99470000-memory.dmp

Filesize
16.7MB

Download
memory/1960-55-0x00007FFC983C0000-0x00007FFC99470000-memory.dmp

Filesize
16.7MB

Download