Overview

overview

7

Static

static

3

PocketCamp...er.exe

windows7-x64

7

PocketCamp...er.exe

windows10-2004-x64

7

$PLUGINSDI...al.ini

windows7-x64

1

$PLUGINSDI...al.ini

windows10-2004-x64

1

$PLUGINSDI...er.bmp

windows7-x64

3

$PLUGINSDI...er.bmp

windows10-2004-x64

7

$PLUGINSDI...rd.bmp

windows7-x64

3

$PLUGINSDI...rd.bmp

windows10-2004-x64

7

alolanvulp..._1.mp4

windows7-x64

1

alolanvulp..._1.mp4

windows10-2004-x64

6

alolanvulp..._2.mp4

windows7-x64

1

alolanvulp..._2.mp4

windows10-2004-x64

6

alolanvulp..._3.mp4

windows7-x64

1

alolanvulp..._3.mp4

windows10-2004-x64

6

alolanvulp..._4.mp4

windows7-x64

1

alolanvulp..._4.mp4

windows10-2004-x64

6

alolanvulp..._5.mp4

windows7-x64

1

alolanvulp..._5.mp4

windows10-2004-x64

6

alolanvulp..._1.mp4

windows7-x64

1

alolanvulp..._1.mp4

windows10-2004-x64

6

alolanvulp..._2.mp4

windows7-x64

1

alolanvulp..._2.mp4

windows10-2004-x64

6

alolanvulp..._3.mp4

windows7-x64

1

alolanvulp..._3.mp4

windows10-2004-x64

6

alolanvulp..._4.mp4

windows7-x64

1

alolanvulp..._4.mp4

windows10-2004-x64

6

alolanvulp..._5.mp4

windows7-x64

1

alolanvulp..._5.mp4

windows10-2004-x64

6

alolanvulp..._1.mp4

windows7-x64

1

alolanvulp..._1.mp4

windows10-2004-x64

6

alolanvulp..._2.mp4

windows7-x64

1

alolanvulp..._2.mp4

windows10-2004-x64

6

Analysis

  • max time kernel
    141s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    14/10/2024, 13:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    alolanvulpix/alolanvulpix_oral_m_3.mp4

  • Size

    2.7MB

  • MD5

    ec7fd99cd734726b30b92a55f72a4699

  • SHA1

    016e3b649f0a927fde96269335deeb1f79cd76f0

  • SHA256

    4517e56b92ece512f08418b929703b26586e8723d2e81c7a45bfae5e4ed46282

  • SHA512

    114e485aa8df55b2f24ec27ae939c2dc987485400d0d529b15cd00bd817266fc66f43a63f9c3059422f9184a6cd649c230fffbd7636ca4fce7c00e4ee728c75c

  • SSDEEP

    49152:85BMKKSD0w7uah2VCUpg6YeAKcVZeg7A/K/LuTDQbb4J2V1Znbh2:ShKSDKp974ZPAiqTsEgZbI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 28 IoCs
  • Suspicious use of SendNotifyMessage 9 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\alolanvulpix\alolanvulpix_oral_m_3.mp4"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:2448

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2448-6-0x000007FEF6A10000-0x000007FEF6A44000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2448-5-0x000000013F670000-0x000000013F768000-memory.dmp

    Filesize

    992KB

    Download

  • memory/2448-12-0x000007FEF6410000-0x000007FEF6421000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2448-14-0x000007FEF62A0000-0x000007FEF62B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2448-13-0x000007FEF62C0000-0x000007FEF62DD000-memory.dmp

    Filesize

    116KB

    Download

  • memory/2448-7-0x000007FEF5D20000-0x000007FEF5FD6000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/2448-11-0x000007FEF6430000-0x000007FEF6447000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2448-10-0x000007FEF68A0000-0x000007FEF68B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2448-9-0x000007FEF68C0000-0x000007FEF68D7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2448-8-0x000007FEFB350000-0x000007FEFB368000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2448-15-0x000007FEF5B10000-0x000007FEF5D1B000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2448-17-0x000007FEF61B0000-0x000007FEF61F1000-memory.dmp

    Filesize

    260KB

    Download

  • memory/2448-24-0x000007FEF60F0000-0x000007FEF6101000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2448-26-0x000007FEF4A10000-0x000007FEF4A40000-memory.dmp

    Filesize

    192KB

    Download

  • memory/2448-29-0x000007FEF4900000-0x000007FEF4911000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2448-30-0x000007FEF48A0000-0x000007FEF48F7000-memory.dmp

    Filesize

    348KB

    Download

  • memory/2448-32-0x000007FEF4700000-0x000007FEF4717000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2448-16-0x000007FEF4A60000-0x000007FEF5B10000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/2448-31-0x000007FEF4720000-0x000007FEF48A0000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/2448-28-0x000007FEF4920000-0x000007FEF499C000-memory.dmp

    Filesize

    496KB

    Download

  • memory/2448-27-0x000007FEF49A0000-0x000007FEF4A07000-memory.dmp

    Filesize

    412KB

    Download

  • memory/2448-25-0x000007FEF4A40000-0x000007FEF4A58000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2448-23-0x000007FEF6110000-0x000007FEF612B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/2448-22-0x000007FEF6130000-0x000007FEF6141000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2448-21-0x000007FEF6150000-0x000007FEF6161000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2448-20-0x000007FEF6170000-0x000007FEF6181000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2448-19-0x000007FEF6190000-0x000007FEF61A8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2448-18-0x000007FEF6270000-0x000007FEF6291000-memory.dmp

    Filesize

    132KB

    Download

  • memory/2448-35-0x000007FEF2C60000-0x000007FEF2C72000-memory.dmp

    Filesize

    72KB

    Download

  • memory/2448-38-0x000007FEF74B0000-0x000007FEF74C0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2448-43-0x000007FEF2610000-0x000007FEF2652000-memory.dmp

    Filesize

    264KB

    Download

  • memory/2448-49-0x000007FEF2480000-0x000007FEF2495000-memory.dmp

    Filesize

    84KB

    Download

  • memory/2448-48-0x000007FEF24A0000-0x000007FEF24F0000-memory.dmp

    Filesize

    320KB

    Download

  • memory/2448-47-0x000007FEF24F0000-0x000007FEF2504000-memory.dmp

    Filesize

    80KB

    Download

  • memory/2448-64-0x000007FEEF790000-0x000007FEEF7C4000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2448-63-0x000007FEEF840000-0x000007FEEF897000-memory.dmp

    Filesize

    348KB

    Download

  • memory/2448-62-0x000007FEEF8A0000-0x000007FEEF8EE000-memory.dmp

    Filesize

    312KB

    Download

  • memory/2448-60-0x000007FEF1B10000-0x000007FEF1B84000-memory.dmp

    Filesize

    464KB

    Download

  • memory/2448-61-0x000007FEF19A0000-0x000007FEF19B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2448-59-0x000007FEF1B90000-0x000007FEF1BD7000-memory.dmp

    Filesize

    284KB

    Download

  • memory/2448-54-0x000007FEF2030000-0x000007FEF2136000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2448-58-0x000007FEF1BE0000-0x000007FEF1C41000-memory.dmp

    Filesize

    388KB

    Download

  • memory/2448-57-0x000007FEF1C50000-0x000007FEF1C61000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2448-56-0x000007FEF1FF0000-0x000007FEF2002000-memory.dmp

    Filesize

    72KB

    Download

  • memory/2448-55-0x000007FEF2010000-0x000007FEF2021000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2448-53-0x000007FEF2160000-0x000007FEF2173000-memory.dmp

    Filesize

    76KB

    Download

  • memory/2448-33-0x000007FEF2E90000-0x000007FEF46FF000-memory.dmp

    Filesize

    24.4MB

    Download

  • memory/2448-52-0x000007FEF2180000-0x000007FEF21A3000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2448-51-0x000007FEF21B0000-0x000007FEF21C5000-memory.dmp

    Filesize

    84KB

    Download

  • memory/2448-50-0x000007FEF21D0000-0x000007FEF2480000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/2448-46-0x000007FEF2510000-0x000007FEF2523000-memory.dmp

    Filesize

    76KB

    Download

  • memory/2448-45-0x000007FEF2530000-0x000007FEF259D000-memory.dmp

    Filesize

    436KB

    Download

  • memory/2448-44-0x000007FEF25A0000-0x000007FEF2602000-memory.dmp

    Filesize

    392KB

    Download

  • memory/2448-42-0x000007FEF2660000-0x000007FEF2725000-memory.dmp

    Filesize

    788KB

    Download

  • memory/2448-41-0x000007FEF2730000-0x000007FEF2746000-memory.dmp

    Filesize

    88KB

    Download

  • memory/2448-40-0x000007FEF2750000-0x000007FEF2761000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2448-39-0x000007FEF2770000-0x000007FEF279F000-memory.dmp

    Filesize

    188KB

    Download

  • memory/2448-37-0x000007FEF2BC0000-0x000007FEF2C0D000-memory.dmp

    Filesize

    308KB

    Download

  • memory/2448-36-0x000007FEF2C10000-0x000007FEF2C52000-memory.dmp

    Filesize

    264KB

    Download

  • memory/2448-34-0x000007FEF2C80000-0x000007FEF2E86000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2448-67-0x000007FEF5D20000-0x000007FEF5FD6000-memory.dmp

    Filesize

    2.7MB

    Download