Overview

overview

3

Static

static

1

macro era ...fd.rec

windows7-x64

1

macro era ...fd.rec

windows10-2004-x64

3

Analysis

  • max time kernel
    140s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13-09-2024 23:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    macro era 9.1fdsadsfasdafsafdsadfsafd.rec

  • Size

    5KB

  • MD5

    57ae3420dada0261379c4356c3b68349

  • SHA1

    6a8393e4026ad275a48b04cfacbad7b4e76464f1

  • SHA256

    eb0945e8345465fad4b6a808354dc6ac5bdd9fa393e6b88f2333777572342749

  • SHA512

    310c0da7dca02103dc1c650318526f00c7d83d19a5a5957b5a00f4b9d631718556f075cb03bf965d276c919951921edde035a1770925b2fae2d9d81eca9537cc

  • SSDEEP

    48:LpNl+G2YO8qtzBb9iaXqoIILY1AY0DgRRajsP+lcoEMX6:V+YO8qtBbpqo6KYggRRajsP+lcHz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 13 IoCs
  • Suspicious use of SendNotifyMessage 12 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\macro era 9.1fdsadsfasdafsafdsadfsafd.rec"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:2844

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2844-13-0x000007FEF73C0000-0x000007FEF73F4000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2844-12-0x000000013F960000-0x000000013FA58000-memory.dmp

    Filesize

    992KB

    Download

  • memory/2844-18-0x000007FEF7250000-0x000007FEF7267000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2844-21-0x000007FEF6D60000-0x000007FEF6D71000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2844-20-0x000007FEF6D80000-0x000007FEF6D9D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/2844-19-0x000007FEF6DA0000-0x000007FEF6DB1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2844-17-0x000007FEF7270000-0x000007FEF7281000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2844-16-0x000007FEF80C0000-0x000007FEF80D7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2844-14-0x000007FEF6610000-0x000007FEF68C6000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/2844-15-0x000007FEFB780000-0x000007FEFB798000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2844-23-0x000007FEF5350000-0x000007FEF555B000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2844-22-0x000007FEF5560000-0x000007FEF6610000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/2844-34-0x000007FEF52E0000-0x000007FEF5347000-memory.dmp

    Filesize

    412KB

    Download

  • memory/2844-33-0x000007FEF69F0000-0x000007FEF6A20000-memory.dmp

    Filesize

    192KB

    Download

  • memory/2844-32-0x000007FEF6A20000-0x000007FEF6A38000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2844-31-0x000007FEF6A40000-0x000007FEF6A51000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2844-30-0x000007FEF6A60000-0x000007FEF6A7B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/2844-29-0x000007FEF6A80000-0x000007FEF6A91000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2844-28-0x000007FEF6AA0000-0x000007FEF6AB1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2844-35-0x000007FEF5260000-0x000007FEF52DC000-memory.dmp

    Filesize

    496KB

    Download

  • memory/2844-27-0x000007FEF6B60000-0x000007FEF6B71000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2844-26-0x000007FEF6D40000-0x000007FEF6D58000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2844-25-0x000007FEF6AC0000-0x000007FEF6AE1000-memory.dmp

    Filesize

    132KB

    Download

  • memory/2844-24-0x000007FEF6B80000-0x000007FEF6BC1000-memory.dmp

    Filesize

    260KB

    Download

  • memory/2844-36-0x000007FEF5240000-0x000007FEF5251000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2844-37-0x000007FEF51E0000-0x000007FEF5237000-memory.dmp

    Filesize

    348KB

    Download

  • memory/2844-38-0x000007FEF51B0000-0x000007FEF51D8000-memory.dmp

    Filesize

    160KB

    Download

  • memory/2844-39-0x000007FEF5180000-0x000007FEF51A4000-memory.dmp

    Filesize

    144KB

    Download

  • memory/2844-40-0x000007FEF5160000-0x000007FEF5178000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2844-41-0x000007FEF5130000-0x000007FEF5153000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2844-42-0x000007FEF5110000-0x000007FEF5121000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2844-43-0x000007FEF50F0000-0x000007FEF5102000-memory.dmp

    Filesize

    72KB

    Download

  • memory/2844-44-0x000007FEF4490000-0x000007FEF44A1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2844-45-0x000007FEF4360000-0x000007FEF4371000-memory.dmp

    Filesize

    68KB

    Download