67453f543db5818fe7cb2eff9a09f8ec4df4d0217ed1c5fc86a61f245dedd345 | Triage

Resubmissions

20/04/2024, 08:03

240420-jxzm5acg3z 3

20/04/2024, 08:01

240420-jwh9racf9t 7

Analysis

max time kernel
135s
max time network
144s
platform
windows10-1703_x64
resource
win10-20240404-en
resource tags

arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
submitted
20/04/2024, 08:03

Sharing

Report Analysis Logs

General

Target

Orbit/DisableHypervisorEnforcedCodeIntegrity.reg
Size

173B
MD5

dd243eb0a44f50ca37d79fdaf301d98e
SHA1

e75417c31ad7e11e248180277532a7644aad3f15
SHA256

86554a668bec8cda1dd60c3256ab0eba14251b8bd9958f5bd7bb5109dbf63e83
SHA512

fd927c3918a6bad0fce12e9d63fe8d3cdb82664f7e7c522d9b09e9d5cffd2f9fe968cefa83ead42185348523bf7eb7c8d3a0a0389c9858069bf25d09a638fdea

Score

1^/10

Malware Config

Signatures

Runs .reg file with regedit 1 IoCs

pid	Process
1104	regedit.exe

C:\Windows\regedit.exe
regedit.exe "C:\Users\Admin\AppData\Local\Temp\Orbit\DisableHypervisorEnforcedCodeIntegrity.reg"
1⤵
- Runs .reg file with regedit
PID:1104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads