f4cbb54e6a5970d9e63f345a24546262e478941ccb673919e1ce43fed75a8bb1

Analysis

max time kernel
149s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
18/04/2024, 19:44

Target

SecuriteInfo.com.Trojan.Siggen17.35688.9477.7627.exe
Size

1.7MB
MD5

702b63d3eb93cfd393dbc7f5359a9940
SHA1

3533be0ee443c84b2ddb66b39a9597209a6f0f97
SHA256

f4cbb54e6a5970d9e63f345a24546262e478941ccb673919e1ce43fed75a8bb1
SHA512

5778d06ec14c5806d1370629612d890aa9e19a5a368de6c826ad87cd42b0b712f1d8c9b18ecbcabc249dc77906d178c6b98d3814b57ca1ea379b5a110ebe0656
SSDEEP

49152:h55NuxHrnToReT+vPEYE5drWXm216k4c2SRyiUMBWht:L5IxHr8Ru+vPZkdy1Fx2SRyiUMBWr

Score

1^/10

Modifies registry class 7 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{9B7A98EC-7EF9-468c-ACC8-37C793DBD7E0}\Implemented Categories	SecuriteInfo.com.Trojan.Siggen17.35688.9477.7627.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{9B7A98EC-7EF9-468c-ACC8-37C793DBD7E0}\Implemented Categories\{A5F7140E-4311-4ef9-AABC-F55941B5EBE5}\idex = "f11eec4828942ebaa8d28a56b49a6a63"	SecuriteInfo.com.Trojan.Siggen17.35688.9477.7627.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{9B7A98EC-7EF9-468c-ACC8-37C793DBD7E0}\Implemented Categories\{A5F7140E-4311-4ef9-AABC-F55941B5EBE5}\idno = "1"	SecuriteInfo.com.Trojan.Siggen17.35688.9477.7627.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{9B7A98EC-7EF9-468c-ACC8-37C793DBD7E0}\Implemented Categories\{A5F7140E-4311-4ef9-AABC-F55941B5EBE5}	SecuriteInfo.com.Trojan.Siggen17.35688.9477.7627.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node	SecuriteInfo.com.Trojan.Siggen17.35688.9477.7627.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID	SecuriteInfo.com.Trojan.Siggen17.35688.9477.7627.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{9B7A98EC-7EF9-468c-ACC8-37C793DBD7E0}	SecuriteInfo.com.Trojan.Siggen17.35688.9477.7627.exe

C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Trojan.Siggen17.35688.9477.7627.exe
"C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Trojan.Siggen17.35688.9477.7627.exe"
1⤵
- Modifies registry class
PID:3236