87e875dbcb220c06eeef00fba2f38304cb3028641df26d1799c6b8534ec1ce1e

Analysis

max time kernel
140s
max time network
121s
platform
windows7_x64
resource
win7-20240705-en
resource tags

arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
submitted
26/08/2024, 01:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

ChessBotX Trial/voiceover/a2.mp3
Size

2KB
MD5

a000d7ebd6c6549cc66720e8f520470a
SHA1

3f76224c5a0c0be24078e61471156532b5ee742d
SHA256

990a8a68237f5620ebd2ed383b347f33674b89ded2ef04e05a6bace20fa3d189
SHA512

61c249987ace0cb8144ebe897193b8f3792eb8e101833123e198849a5644bb9e1142976ec9c57c96ec352dc43d7bd547d9c2606a35d0b2afef0b5ad7854df5cb

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
2124	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2124	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	2124	vlc.exe
Token: SeIncBasePriorityPrivilege	2124	vlc.exe

Suspicious use of FindShellTrayWindow 9 IoCs

pid	Process
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe

Suspicious use of SendNotifyMessage 8 IoCs

pid	Process
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe
2124	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2124	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\ChessBotX Trial\voiceover\a2.mp3"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:2124

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2124-6-0x000007FEF7490000-0x000007FEF74C4000-memory.dmp

Filesize
208KB

Download
memory/2124-5-0x000000013F030000-0x000000013F128000-memory.dmp

Filesize
992KB

Download
memory/2124-10-0x000007FEF8180000-0x000007FEF8191000-memory.dmp

Filesize
68KB

Download
memory/2124-9-0x000007FEFA8F0000-0x000007FEFA907000-memory.dmp

Filesize
92KB

Download
memory/2124-11-0x000007FEF7340000-0x000007FEF7357000-memory.dmp

Filesize
92KB

Download
memory/2124-12-0x000007FEF7320000-0x000007FEF7331000-memory.dmp

Filesize
68KB

Download
memory/2124-8-0x000007FEFB570000-0x000007FEFB588000-memory.dmp

Filesize
96KB

Download
memory/2124-13-0x000007FEF6E90000-0x000007FEF6EAD000-memory.dmp

Filesize
116KB

Download
memory/2124-7-0x000007FEF62A0000-0x000007FEF6556000-memory.dmp

Filesize
2.7MB

Download
memory/2124-14-0x000007FEF6090000-0x000007FEF629B000-memory.dmp

Filesize
2.0MB

Download
memory/2124-15-0x000007FEF6E70000-0x000007FEF6E81000-memory.dmp

Filesize
68KB

Download
memory/2124-16-0x000007FEF6980000-0x000007FEF69C1000-memory.dmp

Filesize
260KB

Download
memory/2124-17-0x000007FEF6950000-0x000007FEF6971000-memory.dmp

Filesize
132KB

Download
memory/2124-18-0x000007FEF6930000-0x000007FEF6948000-memory.dmp

Filesize
96KB

Download
memory/2124-19-0x000007FEF6910000-0x000007FEF6921000-memory.dmp

Filesize
68KB

Download
memory/2124-20-0x000007FEF68F0000-0x000007FEF6901000-memory.dmp

Filesize
68KB

Download
memory/2124-21-0x000007FEF68D0000-0x000007FEF68E1000-memory.dmp

Filesize
68KB

Download
memory/2124-22-0x000007FEF6070000-0x000007FEF608B000-memory.dmp

Filesize
108KB

Download
memory/2124-23-0x000007FEF6050000-0x000007FEF6061000-memory.dmp

Filesize
68KB

Download
memory/2124-24-0x000007FEF6030000-0x000007FEF6048000-memory.dmp

Filesize
96KB

Download
memory/2124-25-0x000007FEF6000000-0x000007FEF6030000-memory.dmp

Filesize
192KB

Download
memory/2124-27-0x000007FEF4EE0000-0x000007FEF4F47000-memory.dmp

Filesize
412KB

Download
memory/2124-31-0x000007FEF4E00000-0x000007FEF4E11000-memory.dmp

Filesize
68KB

Download
memory/2124-32-0x000007FEF4DA0000-0x000007FEF4DF7000-memory.dmp

Filesize
348KB

Download
memory/2124-30-0x000007FEF4E20000-0x000007FEF4E38000-memory.dmp

Filesize
96KB

Download
memory/2124-29-0x000007FEF4E40000-0x000007FEF4E51000-memory.dmp

Filesize
68KB

Download
memory/2124-28-0x000007FEF4E60000-0x000007FEF4EDC000-memory.dmp

Filesize
496KB

Download
memory/2124-33-0x000007FEF4D70000-0x000007FEF4D9F000-memory.dmp

Filesize
188KB

Download
memory/2124-34-0x000007FEF4D50000-0x000007FEF4D63000-memory.dmp

Filesize
76KB

Download
memory/2124-35-0x000007FEF4D30000-0x000007FEF4D41000-memory.dmp

Filesize
68KB

Download
memory/2124-41-0x000007FEF2DD0000-0x000007FEF2DE1000-memory.dmp

Filesize
68KB

Download
memory/2124-40-0x000007FEF2E10000-0x000007FEF2E25000-memory.dmp

Filesize
84KB

Download
memory/2124-39-0x000007FEF2E30000-0x000007FEF2E9D000-memory.dmp

Filesize
436KB

Download
memory/2124-38-0x000007FEF2FB0000-0x000007FEF2FD8000-memory.dmp

Filesize
160KB

Download
memory/2124-37-0x000007FEF2FE0000-0x000007FEF3037000-memory.dmp

Filesize
348KB

Download
memory/2124-36-0x000007FEF4C60000-0x000007FEF4D25000-memory.dmp

Filesize
788KB

Download
memory/2124-42-0x000007FEF2DB0000-0x000007FEF2DC2000-memory.dmp

Filesize
72KB

Download
memory/2124-48-0x000007FEF2B90000-0x000007FEF2BA1000-memory.dmp

Filesize
68KB

Download
memory/2124-47-0x000007FEF2BB0000-0x000007FEF2BC1000-memory.dmp

Filesize
68KB

Download
memory/2124-46-0x000007FEF2BD0000-0x000007FEF2BE1000-memory.dmp

Filesize
68KB

Download
memory/2124-45-0x000007FEF2BF0000-0x000007FEF2C04000-memory.dmp

Filesize
80KB

Download
memory/2124-44-0x000007FEF2C10000-0x000007FEF2C23000-memory.dmp

Filesize
76KB

Download
memory/2124-43-0x000007FEF2C30000-0x000007FEF2DAA000-memory.dmp

Filesize
1.5MB

Download
memory/2124-26-0x000007FEF4F50000-0x000007FEF6000000-memory.dmp

Filesize
16.7MB

Download