Overview

overview

7

Static

static

3

VideoThumb...up.exe

windows11-21h2-x64

7

$PLUGINSDI...er.dll

windows11-21h2-x64

3

$PLUGINSDI...em.dll

windows11-21h2-x64

3

$PLUGINSDIR/UAC.dll

windows11-21h2-x64

3

$PLUGINSDI...nu.dll

windows11-21h2-x64

3

$PLUGINSDI...dl.dll

windows11-21h2-x64

3

DirectShow...05.dll

windows11-21h2-x64

1

FFmpeg.AutoGen.dll

windows11-21h2-x64

1

FFmpeg/x64...61.dll

windows11-21h2-x64

1

FFmpeg/x64...61.dll

windows11-21h2-x64

1

FFmpeg/x64...10.dll

windows11-21h2-x64

1

FFmpeg/x64...61.dll

windows11-21h2-x64

1

FFmpeg/x64...59.dll

windows11-21h2-x64

1

FFmpeg/x64/ffmpeg.exe

windows11-21h2-x64

1

FFmpeg/x64...be.exe

windows11-21h2-x64

1

FFmpeg/x64...-5.dll

windows11-21h2-x64

1

FFmpeg/x64...-8.dll

windows11-21h2-x64

1

PicturesTh...er.exe

windows11-21h2-x64

1

Uninstall.exe

windows11-21h2-x64

7

$PLUGINSDIR/UAC.dll

windows11-21h2-x64

3

VideoThumb...er.exe

windows11-21h2-x64

1

WebP/x64/libwebp.dll

windows11-21h2-x64

1

WebP/x64/l...ux.dll

windows11-21h2-x64

1

WebP/x64/l...ux.dll

windows11-21h2-x64

1

apng.lib.dll

windows11-21h2-x64

1

d2dlib64.dll

windows11-21h2-x64

1

d2dlibexport.dll

windows11-21h2-x64

1

d2dwinform.dll

windows11-21h2-x64

1

loop.cur

windows11-21h2-x64

3

Analysis

  • max time kernel
    92s
  • max time network
    202s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    12/10/2024, 00:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    FFmpeg/x64/ffprobe.exe

  • Size

    198KB

  • MD5

    b67614a3cedea08a8f30bf1726355c71

  • SHA1

    76c3497adb5e01b73c4bd703a34760b111a6c153

  • SHA256

    08d4dc26a074de1c10a6e4285811d6e91cfca37713e062f7683ea646b04369e6

  • SHA512

    c09e232513d476dedbd6bcfab6a993499a95f858b89d5681163c2772d0ccc6f7b5fe5b662dbf9bc2daf1883bc99d4f7c48969d73c451933ec98948f6a6d131e1

  • SSDEEP

    3072:/Ceqyu2z87W/0EeTatRDNWZ8lQJZUJZdt9pcqsrsUMqaDqTYbTv8W2y:aauZ73EptRDmBUJzpcHwfDqTYbTv8ty

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\FFmpeg\x64\ffprobe.exe
    "C:\Users\Admin\AppData\Local\Temp\FFmpeg\x64\ffprobe.exe"
    1⤵
      PID:1452

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1452-0-0x00007FF7A2720000-0x00007FF7A2758000-memory.dmp

      Filesize

      224KB

      Download

    • memory/1452-1-0x00007FF9E70A0000-0x00007FF9E710F000-memory.dmp

      Filesize

      444KB

      Download

    • memory/1452-3-0x00007FF9E7060000-0x00007FF9E709C000-memory.dmp

      Filesize

      240KB

      Download

    • memory/1452-6-0x00007FF9D1410000-0x00007FF9D1971000-memory.dmp

      Filesize

      5.4MB

      Download

    • memory/1452-5-0x00007FF9E4400000-0x00007FF9E44C9000-memory.dmp

      Filesize

      804KB

      Download

    • memory/1452-4-0x00007FF9DEEC0000-0x00007FF9DF2A9000-memory.dmp

      Filesize

      3.9MB

      Download

    • memory/1452-2-0x00007FF9D1980000-0x00007FF9D2B1A000-memory.dmp

      Filesize

      17.6MB

      Download

    • memory/1452-7-0x00007FF9CEFD0000-0x00007FF9D1403000-memory.dmp

      Filesize

      36.2MB

      Download