aa0e0aaf520bc8ea029de264ca2c2ff54f8c076fcd96c14285c66f19a3374a95

Analysis

max time kernel
149s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
12-03-2024 12:44

Target

SecuriteInfo.com.Win64.Evo-gen.10233.31562.exe
Size

14.4MB
MD5

96b5933e584b4a63a85368ff0c6df0c1
SHA1

4bf5175ce08660774ef52787ef61030c770851c9
SHA256

aa0e0aaf520bc8ea029de264ca2c2ff54f8c076fcd96c14285c66f19a3374a95
SHA512

fbb87076d8cef6edadd4397b9815c0909d6a51e4b71871cb7216cede9983538305d3b2a023dbf149c4f56be69d98e465b8ed62de4d741ace134cf750ae0c1d11
SSDEEP

98304:ILNhc1cojhK1CcE89CnbI6DdD5DiPNjeD1952JYol+VH6guVuABhN/aUAtywU5Fp:NjhK1C2CnviPNjeZ95SYol+VH639wK

Score

8^/10

evasion

Disables RegEdit via registry modification 1 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-21-3270530367-132075249-2153716227-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools = "1"	SecuriteInfo.com.Win64.Evo-gen.10233.31562.exe

C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Win64.Evo-gen.10233.31562.exe
"C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Win64.Evo-gen.10233.31562.exe"
1⤵
- Disables RegEdit via registry modification
PID:3280

memory/3280-0-0x0000000000400000-0x00000000010A5000-memory.dmp

Filesize
12.6MB

Download