005d0acad4b988b933bc58b249238a601d4a6104324db85fa9a67bc29c57abda

Analysis

max time kernel
149s
max time network
137s
platform
windows10-2004_x64
resource
win10v2004-20250314-en
resource tags

arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
submitted
30/03/2025, 18:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Windows11DebloaterV205/Windows11Debloater.exe
Size

2.2MB
MD5

f0dfa157e77657bdd637be327450e4d7
SHA1

909c7b789ee52c06cd1978e18eeea82de476cea9
SHA256

aab7fbb655987d0bc2317429124aaa2b3a099c8173db787e9631de9563c78be6
SHA512

6b2b4b60d3488ffd57363ac2c3a3c226184557f98ae8ca32981ef03551c3c88874e0726fc2b65859411e72869e0bc422cbe81880d2068a5b93917a99ef60362d
SSDEEP

49152:olM2TdJp+mtE/eQJO3Wdgtn9VgbtKWTLHqEXCm4eH:olM2pJ3+GQJOZtn9cKWTLKEXCm

Score

1^/10

Malware Config

Signatures

Modifies Control Panel 1 IoCs

defense_evasion

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-3975168204-1612096350-4002976354-1000\Control Panel\Colors	Windows11Debloater.exe

C:\Users\Admin\AppData\Local\Temp\Windows11DebloaterV205\Windows11Debloater.exe
"C:\Users\Admin\AppData\Local\Temp\Windows11DebloaterV205\Windows11Debloater.exe"
1⤵
- Modifies Control Panel
PID:1844

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1844-0-0x00007FFC86C83000-0x00007FFC86C85000-memory.dmp

Filesize
8KB

Download
memory/1844-1-0x00000296082F0000-0x0000029608520000-memory.dmp

Filesize
2.2MB

Download
memory/1844-2-0x000002960A280000-0x000002960A368000-memory.dmp

Filesize
928KB

Download
memory/1844-3-0x00007FFC86C80000-0x00007FFC87741000-memory.dmp

Filesize
10.8MB

Download
memory/1844-5-0x00000296088F0000-0x00000296088F8000-memory.dmp

Filesize
32KB

Download
memory/1844-6-0x0000029608900000-0x000002960890A000-memory.dmp

Filesize
40KB

Download
memory/1844-4-0x000002960A3B0000-0x000002960A3D6000-memory.dmp

Filesize
152KB

Download
memory/1844-7-0x0000029624610000-0x00000296246CA000-memory.dmp

Filesize
744KB

Download
memory/1844-9-0x00007FFC86C80000-0x00007FFC87741000-memory.dmp

Filesize
10.8MB

Download
memory/1844-8-0x00000296245E0000-0x00000296245E8000-memory.dmp

Filesize
32KB

Download
memory/1844-10-0x0000029627610000-0x0000029627648000-memory.dmp

Filesize
224KB

Download
memory/1844-12-0x00007FFC86C80000-0x00007FFC87741000-memory.dmp

Filesize
10.8MB

Download
memory/1844-11-0x00000296245F0000-0x00000296245FE000-memory.dmp

Filesize
56KB

Download
memory/1844-13-0x00007FFC86C80000-0x00007FFC87741000-memory.dmp

Filesize
10.8MB

Download
memory/1844-14-0x00007FFC86C83000-0x00007FFC86C85000-memory.dmp

Filesize
8KB

Download
memory/1844-15-0x00007FFC86C80000-0x00007FFC87741000-memory.dmp

Filesize
10.8MB

Download
memory/1844-16-0x00007FFC86C80000-0x00007FFC87741000-memory.dmp

Filesize
10.8MB

Download
memory/1844-17-0x00007FFC86C80000-0x00007FFC87741000-memory.dmp

Filesize
10.8MB

Download
memory/1844-18-0x00007FFC86C80000-0x00007FFC87741000-memory.dmp

Filesize
10.8MB

Download
memory/1844-19-0x00007FFC86C80000-0x00007FFC87741000-memory.dmp

Filesize
10.8MB

Download
memory/1844-20-0x00007FFC86C80000-0x00007FFC87741000-memory.dmp

Filesize
10.8MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads