4b99c56a63521cfd4ac8a7648a92a5737ebc2b009d442e10445a8d44db846d47

Analysis

max time kernel
140s
max time network
120s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
20/08/2024, 16:48

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

38 34 35/s/u.ogg
Size

7KB
MD5

f30ccc52c75765be1e8aa96fedfd83d2
SHA1

6e4285e39efa7b62402fa184d4dfa35f4fe8416d
SHA256

b257231719a6d056b23a7ecebe2cbd399ab67eae32dbf90d71e7c0fc017fb35f
SHA512

9c57c201b955a0bb138e9e23af420b52d8238d2b875a21849036d02486651a5ed5d0574f45f4afe9a3a3ae5da275d9d5aa64cf02fcbc280c58387c0cb0f2968c
SSDEEP

192:+0xttxOiSC/0y8vz1ezmsbScCnO0GU038rOPVd6DX:VtDZ/Sz14j0GUO1PV4r

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
1936	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
1936	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	1936	vlc.exe
Token: SeIncBasePriorityPrivilege	1936	vlc.exe

Suspicious use of FindShellTrayWindow 8 IoCs

pid	Process
1936	vlc.exe
1936	vlc.exe
1936	vlc.exe
1936	vlc.exe
1936	vlc.exe
1936	vlc.exe
1936	vlc.exe
1936	vlc.exe

Suspicious use of SendNotifyMessage 7 IoCs

pid	Process
1936	vlc.exe
1936	vlc.exe
1936	vlc.exe
1936	vlc.exe
1936	vlc.exe
1936	vlc.exe
1936	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1936	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\38 34 35\s\u.ogg"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:1936

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1936-5-0x000000013F2A0000-0x000000013F398000-memory.dmp

Filesize
992KB

Download
memory/1936-6-0x000007FEF79A0000-0x000007FEF79D4000-memory.dmp

Filesize
208KB

Download
memory/1936-12-0x000007FEF77F0000-0x000007FEF7801000-memory.dmp

Filesize
68KB

Download
memory/1936-14-0x000007FEF77B0000-0x000007FEF77C1000-memory.dmp

Filesize
68KB

Download
memory/1936-13-0x000007FEF77D0000-0x000007FEF77ED000-memory.dmp

Filesize
116KB

Download
memory/1936-11-0x000007FEF7810000-0x000007FEF7827000-memory.dmp

Filesize
92KB

Download
memory/1936-10-0x000007FEF7830000-0x000007FEF7841000-memory.dmp

Filesize
68KB

Download
memory/1936-9-0x000007FEF7850000-0x000007FEF7867000-memory.dmp

Filesize
92KB

Download
memory/1936-7-0x000007FEF5CA0000-0x000007FEF5F56000-memory.dmp

Filesize
2.7MB

Download
memory/1936-8-0x000007FEFB980000-0x000007FEFB998000-memory.dmp

Filesize
96KB

Download
memory/1936-40-0x000007FEF6300000-0x000007FEF6312000-memory.dmp

Filesize
72KB

Download
memory/1936-39-0x000007FEF6320000-0x000007FEF6331000-memory.dmp

Filesize
68KB

Download
memory/1936-38-0x000007FEF6360000-0x000007FEF6375000-memory.dmp

Filesize
84KB

Download
memory/1936-37-0x000007FEF4790000-0x000007FEF4855000-memory.dmp

Filesize
788KB

Download
memory/1936-36-0x000007FEF6450000-0x000007FEF6466000-memory.dmp

Filesize
88KB

Download
memory/1936-35-0x000007FEF6470000-0x000007FEF6481000-memory.dmp

Filesize
68KB

Download
memory/1936-15-0x000007FEF4BF0000-0x000007FEF5CA0000-memory.dmp

Filesize
16.7MB

Download
memory/1936-34-0x000007FEF6630000-0x000007FEF665F000-memory.dmp

Filesize
188KB

Download
memory/1936-33-0x000007FEFA8D0000-0x000007FEFA8E0000-memory.dmp

Filesize
64KB

Download
memory/1936-32-0x000007FEF6660000-0x000007FEF6677000-memory.dmp

Filesize
92KB

Download
memory/1936-31-0x000007FEF4860000-0x000007FEF49E0000-memory.dmp

Filesize
1.5MB

Download
memory/1936-30-0x000007FEF6380000-0x000007FEF63DC000-memory.dmp

Filesize
368KB

Download
memory/1936-29-0x000007FEF66F0000-0x000007FEF6701000-memory.dmp

Filesize
68KB

Download
memory/1936-28-0x000007FEF6AC0000-0x000007FEF6B3C000-memory.dmp

Filesize
496KB

Download
memory/1936-27-0x000007FEF6B40000-0x000007FEF6BA7000-memory.dmp

Filesize
412KB

Download
memory/1936-26-0x000007FEF6BB0000-0x000007FEF6BE0000-memory.dmp

Filesize
192KB

Download
memory/1936-25-0x000007FEF6BE0000-0x000007FEF6BF8000-memory.dmp

Filesize
96KB

Download
memory/1936-24-0x000007FEF6C00000-0x000007FEF6C11000-memory.dmp

Filesize
68KB

Download
memory/1936-23-0x000007FEF6C20000-0x000007FEF6C3B000-memory.dmp

Filesize
108KB

Download
memory/1936-22-0x000007FEF6C40000-0x000007FEF6C51000-memory.dmp

Filesize
68KB

Download
memory/1936-21-0x000007FEF6CF0000-0x000007FEF6D01000-memory.dmp

Filesize
68KB

Download
memory/1936-20-0x000007FEF7560000-0x000007FEF7571000-memory.dmp

Filesize
68KB

Download
memory/1936-19-0x000007FEF7710000-0x000007FEF7728000-memory.dmp

Filesize
96KB

Download
memory/1936-18-0x000007FEF7730000-0x000007FEF7751000-memory.dmp

Filesize
132KB

Download
memory/1936-17-0x000007FEF7760000-0x000007FEF77A1000-memory.dmp

Filesize
260KB

Download
memory/1936-16-0x000007FEF49E0000-0x000007FEF4BEB000-memory.dmp

Filesize
2.0MB

Download
memory/1936-41-0x000007FEF4610000-0x000007FEF478A000-memory.dmp

Filesize
1.5MB

Download