Overview

overview

6

Static

static

1

945554145-1-16.mp4

windows7-x64

1

945554145-1-16.mp4

windows10-2004-x64

6

945569409-1-16.mp4

windows7-x64

1

945569409-1-16.mp4

windows10-2004-x64

6

945793906-1-16.mp4

windows7-x64

1

945793906-1-16.mp4

windows10-2004-x64

6

945809687-1-16.mp4

windows7-x64

1

945809687-1-16.mp4

windows10-2004-x64

6

963821516-1-16.mp4

windows7-x64

1

963821516-1-16.mp4

windows10-2004-x64

6

964296702-1-16.mp4

windows7-x64

1

964296702-1-16.mp4

windows10-2004-x64

6

Analysis

  • max time kernel
    21s
  • max time network
    16s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    08-08-2024 14:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    945569409-1-16.mp4

  • Size

    3.5MB

  • MD5

    bd9dcb34888df2af62c634fe7f9a3f04

  • SHA1

    8e2bcbccd639e752f7e9aedfce237641bff7a46d

  • SHA256

    cf67ee762cf27f65f114fb5812e9f6adda59ca786c3abb09489b6bb37e1b4816

  • SHA512

    e66f9711f62117816a12c17f1dd1af35bfca0b734421bc7293d166dd78bd9548a3090cb3ab8b281a9be697b6f1357482ff0a47fb0cf9a106a6ce508afcb5c1dc

  • SSDEEP

    49152:qRRjSYBN5ADpy0OlUzg1PWiQukRxAwnwzXdwi6g25ysqxxKp:ORjSCB5Uzg4ifkRxA5dqg25ysqup

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 24 IoCs
  • Suspicious use of SendNotifyMessage 6 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\945569409-1-16.mp4"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:2088

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2088-5-0x000000013F660000-0x000000013F758000-memory.dmp

    Filesize

    992KB

    Download

  • memory/2088-6-0x000007FEF7210000-0x000007FEF7244000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2088-14-0x000007FEF6C50000-0x000007FEF6C61000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2088-13-0x000007FEF6CB0000-0x000007FEF6CCD000-memory.dmp

    Filesize

    116KB

    Download

  • memory/2088-7-0x000007FEF6540000-0x000007FEF67F6000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/2088-12-0x000007FEF70C0000-0x000007FEF70D1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2088-11-0x000007FEF72E0000-0x000007FEF72F7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2088-10-0x000007FEF7730000-0x000007FEF7741000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2088-9-0x000007FEFB760000-0x000007FEFB777000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2088-8-0x000007FEFC210000-0x000007FEFC228000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2088-15-0x000007FEF6330000-0x000007FEF653B000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2088-16-0x000007FEF6AB0000-0x000007FEF6AF1000-memory.dmp

    Filesize

    260KB

    Download

  • memory/2088-32-0x000007FEF4F90000-0x000007FEF4FA7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2088-17-0x000007FEF5280000-0x000007FEF6330000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/2088-31-0x000007FEF4FB0000-0x000007FEF5130000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/2088-55-0x000007FEF2960000-0x000007FEF2972000-memory.dmp

    Filesize

    72KB

    Download

  • memory/2088-64-0x000007FEF1C90000-0x000007FEF1CC4000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2088-33-0x000007FEF3720000-0x000007FEF4F8F000-memory.dmp

    Filesize

    24.4MB

    Download

  • memory/2088-63-0x000007FEF01F0000-0x000007FEF0247000-memory.dmp

    Filesize

    348KB

    Download

  • memory/2088-62-0x000007FEF0250000-0x000007FEF029E000-memory.dmp

    Filesize

    312KB

    Download

  • memory/2088-61-0x000007FEF2200000-0x000007FEF2211000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2088-60-0x000007FEF2370000-0x000007FEF23E4000-memory.dmp

    Filesize

    464KB

    Download

  • memory/2088-59-0x000007FEF23F0000-0x000007FEF2437000-memory.dmp

    Filesize

    284KB

    Download

  • memory/2088-58-0x000007FEF2440000-0x000007FEF24A1000-memory.dmp

    Filesize

    388KB

    Download

  • memory/2088-57-0x000007FEF24B0000-0x000007FEF24C1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2088-56-0x000007FEF27E0000-0x000007FEF295A000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/2088-54-0x000007FEF2980000-0x000007FEF2993000-memory.dmp

    Filesize

    76KB

    Download

  • memory/2088-53-0x000007FEF29A0000-0x000007FEF29B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2088-52-0x000007FEF29C0000-0x000007FEF29E3000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2088-51-0x000007FEF29F0000-0x000007FEF2A05000-memory.dmp

    Filesize

    84KB

    Download

  • memory/2088-50-0x000007FEF2A30000-0x000007FEF2CE0000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/2088-49-0x000007FEF2CE0000-0x000007FEF2CF5000-memory.dmp

    Filesize

    84KB

    Download

  • memory/2088-48-0x000007FEF2D00000-0x000007FEF2D50000-memory.dmp

    Filesize

    320KB

    Download

  • memory/2088-47-0x000007FEF2D50000-0x000007FEF2D64000-memory.dmp

    Filesize

    80KB

    Download

  • memory/2088-46-0x000007FEF2D70000-0x000007FEF2D83000-memory.dmp

    Filesize

    76KB

    Download

  • memory/2088-45-0x000007FEF2D90000-0x000007FEF2DFD000-memory.dmp

    Filesize

    436KB

    Download

  • memory/2088-44-0x000007FEF2E00000-0x000007FEF2E62000-memory.dmp

    Filesize

    392KB

    Download

  • memory/2088-43-0x000007FEF2E70000-0x000007FEF2EB2000-memory.dmp

    Filesize

    264KB

    Download

  • memory/2088-42-0x000007FEF2EC0000-0x000007FEF2F85000-memory.dmp

    Filesize

    788KB

    Download

  • memory/2088-41-0x000007FEF2F90000-0x000007FEF2FA6000-memory.dmp

    Filesize

    88KB

    Download

  • memory/2088-40-0x000007FEF2FB0000-0x000007FEF2FC1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2088-39-0x000007FEF2FD0000-0x000007FEF2FFF000-memory.dmp

    Filesize

    188KB

    Download

  • memory/2088-38-0x000007FEF70B0000-0x000007FEF70C0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2088-37-0x000007FEF3450000-0x000007FEF349D000-memory.dmp

    Filesize

    308KB

    Download

  • memory/2088-36-0x000007FEF34A0000-0x000007FEF34E2000-memory.dmp

    Filesize

    264KB

    Download

  • memory/2088-35-0x000007FEF34F0000-0x000007FEF3502000-memory.dmp

    Filesize

    72KB

    Download

  • memory/2088-34-0x000007FEF3510000-0x000007FEF3716000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2088-30-0x000007FEF5130000-0x000007FEF5187000-memory.dmp

    Filesize

    348KB

    Download

  • memory/2088-29-0x000007FEF6910000-0x000007FEF6921000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2088-28-0x000007FEF5190000-0x000007FEF520C000-memory.dmp

    Filesize

    496KB

    Download

  • memory/2088-27-0x000007FEF5210000-0x000007FEF5277000-memory.dmp

    Filesize

    412KB

    Download

  • memory/2088-26-0x000007FEF6930000-0x000007FEF6960000-memory.dmp

    Filesize

    192KB

    Download

  • memory/2088-25-0x000007FEF6960000-0x000007FEF6978000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2088-24-0x000007FEF6980000-0x000007FEF6991000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2088-23-0x000007FEF69A0000-0x000007FEF69BB000-memory.dmp

    Filesize

    108KB

    Download

  • memory/2088-22-0x000007FEF69C0000-0x000007FEF69D1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2088-21-0x000007FEF69E0000-0x000007FEF69F1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2088-20-0x000007FEF6A00000-0x000007FEF6A11000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2088-19-0x000007FEF6A90000-0x000007FEF6AA8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2088-18-0x000007FEF6C20000-0x000007FEF6C41000-memory.dmp

    Filesize

    132KB

    Download

  • memory/2088-67-0x000007FEF6540000-0x000007FEF67F6000-memory.dmp

    Filesize

    2.7MB

    Download