Analysis

  • max time kernel
    141s
  • max time network
    95s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    14-11-2024 03:34

General

  • Target

    vlc.exe

  • Size

    969KB

  • MD5

    f9538485432d3ec640f89096ba2d4d00

  • SHA1

    b050b847b1fe8be78d56b29bd23c25e05c227a92

  • SHA256

    5d695d8a0bb1d919cc77a2aa2488a61797bfa065238160278ee458120630aaf9

  • SHA512

    ea7aeedd15f4d6a6005f8cfb7d404dfb0c302c837e48de7e3ff44d7d5908f8de6c0a81f736d874a491eddc89fdf753976be6f635e7e8512f5abb7f32caa8cfc5

  • SSDEEP

    24576:oFZAiQHDhht8m7FpUi1L1OXJz5zzz3zzzozzz3zzzNz:CZAiQHlhtz7FpWdwz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 3 IoCs
  • Suspicious use of SendNotifyMessage 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\vlc.exe
    "C:\Users\Admin\AppData\Local\Temp\vlc.exe"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:4244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4244-1-0x00007FFD12290000-0x00007FFD122C4000-memory.dmp

    Filesize

    208KB

  • memory/4244-0-0x00007FF6DDD60000-0x00007FF6DDE58000-memory.dmp

    Filesize

    992KB

  • memory/4244-2-0x00007FFD0D2C0000-0x00007FFD0D576000-memory.dmp

    Filesize

    2.7MB

  • memory/4244-7-0x00007FFD09680000-0x00007FFD09A10000-memory.dmp

    Filesize

    3.6MB

  • memory/4244-16-0x00007FFD12270000-0x00007FFD12288000-memory.dmp

    Filesize

    96KB

  • memory/4244-15-0x00007FFD0DF40000-0x00007FFD0DF6F000-memory.dmp

    Filesize

    188KB

  • memory/4244-25-0x00007FFD037E0000-0x00007FFD03805000-memory.dmp

    Filesize

    148KB

  • memory/4244-24-0x00007FFD02560000-0x00007FFD025AF000-memory.dmp

    Filesize

    316KB

  • memory/4244-23-0x00007FFCFC620000-0x00007FFCFC6B9000-memory.dmp

    Filesize

    612KB

  • memory/4244-22-0x00007FFCFC6C0000-0x00007FFCFC8CB000-memory.dmp

    Filesize

    2.0MB

  • memory/4244-21-0x00007FFD0DC20000-0x00007FFD0DC31000-memory.dmp

    Filesize

    68KB

  • memory/4244-20-0x00007FFD0E170000-0x00007FFD0E181000-memory.dmp

    Filesize

    68KB

  • memory/4244-19-0x00007FFD12060000-0x00007FFD1207A000-memory.dmp

    Filesize

    104KB

  • memory/4244-18-0x00007FFD03810000-0x00007FFD0383D000-memory.dmp

    Filesize

    180KB

  • memory/4244-17-0x00007FFD0CB40000-0x00007FFD0CB66000-memory.dmp

    Filesize

    152KB

  • memory/4244-14-0x00007FFD0D020000-0x00007FFD0D061000-memory.dmp

    Filesize

    260KB

  • memory/4244-13-0x00007FFCFC8D0000-0x00007FFCFC9B3000-memory.dmp

    Filesize

    908KB

  • memory/4244-12-0x00007FFD0D070000-0x00007FFD0D158000-memory.dmp

    Filesize

    928KB

  • memory/4244-11-0x00007FFD093E0000-0x00007FFD09676000-memory.dmp

    Filesize

    2.6MB

  • memory/4244-9-0x00007FFD12880000-0x00007FFD12891000-memory.dmp

    Filesize

    68KB

  • memory/4244-8-0x00007FFD12940000-0x00007FFD12954000-memory.dmp

    Filesize

    80KB

  • memory/4244-6-0x00007FFD10C50000-0x00007FFD10C7B000-memory.dmp

    Filesize

    172KB

  • memory/4244-5-0x00007FFD16FC0000-0x00007FFD16FE2000-memory.dmp

    Filesize

    136KB

  • memory/4244-4-0x00007FFD17010000-0x00007FFD17029000-memory.dmp

    Filesize

    100KB

  • memory/4244-3-0x00007FFD17070000-0x00007FFD17081000-memory.dmp

    Filesize

    68KB

  • memory/4244-10-0x00007FFD0D160000-0x00007FFD0D232000-memory.dmp

    Filesize

    840KB

  • memory/4244-29-0x00007FFCFCAE0000-0x00007FFCFCAF1000-memory.dmp

    Filesize

    68KB

  • memory/4244-28-0x00007FFCFCB00000-0x00007FFCFCB12000-memory.dmp

    Filesize

    72KB

  • memory/4244-27-0x00007FFD0CF00000-0x00007FFD0CF1B000-memory.dmp

    Filesize

    108KB

  • memory/4244-26-0x00007FFCFC570000-0x00007FFCFC61B000-memory.dmp

    Filesize

    684KB

  • memory/4244-31-0x00007FFCF5490000-0x00007FFCF56D5000-memory.dmp

    Filesize

    2.3MB

  • memory/4244-30-0x000001FB1A9D0000-0x000001FB1C23F000-memory.dmp

    Filesize

    24.4MB