a6560d7ca0aa6cd9fed35b053740140b7f57c89a63b5f965aa2f2be3beab3501

Analysis

max time kernel
140s
max time network
127s
platform
windows7_x64
resource
win7-20240705-en
resource tags

arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
submitted
20-08-2024 05:33

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Nighty-Selfbot-main/sounds/giveaway-win.mp3
Size

18KB
MD5

ee2a01ed560817800943d5974db997a0
SHA1

3060561905648271f15aec275e56db0a7ef9334d
SHA256

168c418ca2e1c3ea9543e3fa6f1656359d735c8c1ea62c9a96227b87d0237beb
SHA512

8f657c21677cb2fc41d05900f29a7c0f0fcfc9500d70d5db4dbb14a9659d603a6db659bad20e5005d476226bdb167a57678c37adc3fb5b4e0fc4186af889bcf0
SSDEEP

384:Vo9XzqPoyGmhlsYhQfB8OsEYaZfKSo5oEVQCz4/5Y7n0DZzl:VolG9dhlskE3CT61OOYjaZJ

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
2872	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2872	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	2872	vlc.exe
Token: SeIncBasePriorityPrivilege	2872	vlc.exe

Suspicious use of FindShellTrayWindow 9 IoCs

pid	Process
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe

Suspicious use of SendNotifyMessage 8 IoCs

pid	Process
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe
2872	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2872	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Nighty-Selfbot-main\sounds\giveaway-win.mp3"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:2872

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2872-6-0x000007FEF7C60000-0x000007FEF7C94000-memory.dmp

Filesize
208KB

Download
memory/2872-5-0x000000013FB80000-0x000000013FC78000-memory.dmp

Filesize
992KB

Download
memory/2872-9-0x000007FEFB660000-0x000007FEFB677000-memory.dmp

Filesize
92KB

Download
memory/2872-8-0x000007FEFC1B0000-0x000007FEFC1C8000-memory.dmp

Filesize
96KB

Download
memory/2872-11-0x000007FEFB300000-0x000007FEFB317000-memory.dmp

Filesize
92KB

Download
memory/2872-10-0x000007FEFB5D0000-0x000007FEFB5E1000-memory.dmp

Filesize
68KB

Download
memory/2872-7-0x000007FEF65D0000-0x000007FEF6886000-memory.dmp

Filesize
2.7MB

Download
memory/2872-12-0x000007FEFAFA0000-0x000007FEFAFB1000-memory.dmp

Filesize
68KB

Download
memory/2872-13-0x000007FEF7C40000-0x000007FEF7C5D000-memory.dmp

Filesize
116KB

Download
memory/2872-15-0x000007FEF7C20000-0x000007FEF7C31000-memory.dmp

Filesize
68KB

Download
memory/2872-14-0x000007FEF63C0000-0x000007FEF65CB000-memory.dmp

Filesize
2.0MB

Download
memory/2872-16-0x000007FEF70D0000-0x000007FEF7111000-memory.dmp

Filesize
260KB

Download
memory/2872-25-0x000007FEF6A30000-0x000007FEF6A48000-memory.dmp

Filesize
96KB

Download
memory/2872-27-0x000007FEF52A0000-0x000007FEF5307000-memory.dmp

Filesize
412KB

Download
memory/2872-26-0x000007FEF6A00000-0x000007FEF6A30000-memory.dmp

Filesize
192KB

Download
memory/2872-24-0x000007FEF6A50000-0x000007FEF6A61000-memory.dmp

Filesize
68KB

Download
memory/2872-32-0x000007FEF51C0000-0x000007FEF5217000-memory.dmp

Filesize
348KB

Download
memory/2872-33-0x000007FEF5190000-0x000007FEF51BF000-memory.dmp

Filesize
188KB

Download
memory/2872-31-0x000007FEF69A0000-0x000007FEF69B1000-memory.dmp

Filesize
68KB

Download
memory/2872-30-0x000007FEF69C0000-0x000007FEF69D8000-memory.dmp

Filesize
96KB

Download
memory/2872-29-0x000007FEF69E0000-0x000007FEF69F1000-memory.dmp

Filesize
68KB

Download
memory/2872-28-0x000007FEF5220000-0x000007FEF529C000-memory.dmp

Filesize
496KB

Download
memory/2872-17-0x000007FEF5310000-0x000007FEF63C0000-memory.dmp

Filesize
16.7MB

Download
memory/2872-23-0x000007FEF6A70000-0x000007FEF6A8B000-memory.dmp

Filesize
108KB

Download
memory/2872-22-0x000007FEF6A90000-0x000007FEF6AA1000-memory.dmp

Filesize
68KB

Download
memory/2872-21-0x000007FEF6B30000-0x000007FEF6B41000-memory.dmp

Filesize
68KB

Download
memory/2872-20-0x000007FEF6B50000-0x000007FEF6B61000-memory.dmp

Filesize
68KB

Download
memory/2872-19-0x000007FEF6B70000-0x000007FEF6B88000-memory.dmp

Filesize
96KB

Download
memory/2872-18-0x000007FEF70A0000-0x000007FEF70C1000-memory.dmp

Filesize
132KB

Download
memory/2872-34-0x000007FEF5170000-0x000007FEF5183000-memory.dmp

Filesize
76KB

Download
memory/2872-35-0x000007FEF5150000-0x000007FEF5161000-memory.dmp

Filesize
68KB

Download
memory/2872-36-0x000007FEF5080000-0x000007FEF5145000-memory.dmp

Filesize
788KB

Download
memory/2872-37-0x000007FEF3400000-0x000007FEF3457000-memory.dmp

Filesize
348KB

Download
memory/2872-38-0x000007FEFB6F0000-0x000007FEFB700000-memory.dmp

Filesize
64KB

Download
memory/2872-39-0x000007FEF3380000-0x000007FEF3396000-memory.dmp

Filesize
88KB

Download
memory/2872-40-0x000007FEF3330000-0x000007FEF3372000-memory.dmp

Filesize
264KB

Download
memory/2872-45-0x000007FEF31D0000-0x000007FEF31E2000-memory.dmp

Filesize
72KB

Download
memory/2872-44-0x000007FEF31F0000-0x000007FEF3201000-memory.dmp

Filesize
68KB

Download
memory/2872-43-0x000007FEF3230000-0x000007FEF3245000-memory.dmp

Filesize
84KB

Download
memory/2872-42-0x000007FEF3250000-0x000007FEF32BD000-memory.dmp

Filesize
436KB

Download
memory/2872-41-0x000007FEF32C0000-0x000007FEF3322000-memory.dmp

Filesize
392KB

Download
memory/2872-46-0x000007FEF3050000-0x000007FEF31CA000-memory.dmp

Filesize
1.5MB

Download