8de4160f3eaebccab3022bc62f334012906517410fdc142715d2c6f49513bb04

Resubmissions

08/03/2025, 18:36

max time kernel
5s
platform
windows11-21h2_x64
resource
win11-20250217-en
resource tags

arch:x64arch:x86image:win11-20250217-enlocale:en-usos:windows11-21h2-x64system
submitted
08/03/2025, 18:36

Target

Setup.zip
Size

126.6MB
MD5

db0a02447e27e19e1c7ef85acaf10390
SHA1

67b91afd9bc8cdc0d1d0ebeada247a34de6506b9
SHA256

8de4160f3eaebccab3022bc62f334012906517410fdc142715d2c6f49513bb04
SHA512

197de2b076529c6a5158b6c3a04529513451f4b65ef1a272e03edd3e4cd0f77cb03ee4bb337340af34d26bffc00ea0694ff1b28d13c8e3d5771326829e8bfeda
SSDEEP

3145728:WY23RWZK3UxCoskk8zh2In5WuKmVZs6aX9sLfJzhdV0C:W7RWXYoYY59KkDW+zl

Score

1^/10

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-501547156-4130638328-323075719-1000_Classes\Local Settings\MuiCache	MiniSearchHost.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
4476	MiniSearchHost.exe

C:\Windows\Explorer.exe
C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\Setup.zip
1⤵
PID:3892

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat

Filesize
23KB

MD5
5726af350fb53362b67f203382fd2eaa

SHA1
11f6367d87b92d6c13deed8bc641422d0bcea990

SHA256
5423fff1b9a87ffaf764d572000f10ff80994fc8662eeef2e2c55d90f03de93b

SHA512
db9afd3bb5a52e8412fd1c6481dcc707269a04655b2528ce2c05282e7f34768e133a393302263ee99c6432ee622f0953360f33b010d5cdb4149422154d36ece7

Download Submit