General
Structural Analysis
Config.0
Yara Rules99+
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 70d668ee7892393824f31c73d5d445fb
|
| Sha1 | 4508b095f3fa7e032f6aeae243a1a4faa28f88c7
|
| Sha256 | 5e33919c9c8b9b771de9edca9b7a7e6c243368165378e303e21b50eb37264561
|
| Sha384 | 94677722423bde72b2baf1324100d6ffe33fb786b09fa1cf074f9306e1e2eaa55404ffc37669615915a094941726aba3
|
| Sha512 | faadddb1348db153da0fde76a268831843bf146f8c771e3ea189568e333a48776067c9a3b8ff95880e3aa75baf65471dcf76badc2dcbb0732e6ada02d07dd0d6
|
| SSDeep | 3072:suXNHZqknjguHziOWiv+ApxFSqMZLuyMGFSdVfIE3q:suXfkuH++H8lQyMGUfI/
|
| TLSH | 22D33AE808106C12FEE6F4FB272A1581DE12E590B6C43769C251B27DF9072381E9D6FE
|
File Structure
Win11Debloat-master
Malicious
.github
FUNDING.yml
ISSUE_TEMPLATE
.gitignore
Appslist.txt
Assets
Menus
DefaultSettings
Info
Start
What is this file.txt
start2.bin
menu.png
menu.png-preview.png
LICENSE
README.md
Regfiles
Align_Taskbar_Left.reg
Combine_MMTaskbar_Always.reg
Combine_MMTaskbar_Never.reg
Combine_MMTaskbar_When_Full.reg
Combine_Taskbar_Always.reg
Combine_Taskbar_Never.reg
Combine_Taskbar_When_Full.reg
Disable_AI_Recall.reg
Disable_Animations.reg
Disable_Bing_Cortana_In_Search.reg
Disable_Chat_Taskbar.reg
Disable_Click_to_Do.reg
Disable_Copilot.reg
Disable_DVR.reg
Disable_Desktop_Spotlight.reg
Disable_Edge_AI_Features.reg
Disable_Edge_Ads_And_Suggestions.reg
Disable_Enhance_Pointer_Precision.reg
Disable_Fast_Startup.reg
Disable_Give_access_to_context_menu.reg
Disable_Include_in_library_from_context_menu.reg
Disable_Lockscreen_Tips.reg
Disable_Modern_Standby_Networking.reg
Disable_Notepad_AI_Features.reg
Disable_Paint_AI_Features.reg
Disable_Phone_Link_In_Start.reg
Disable_Settings_365_Ads.reg
Disable_Settings_Home.reg
Disable_Share_from_context_menu.reg
Disable_Show_More_Options_Context_Menu.reg
Disable_Start_Recommended.reg
Disable_Sticky_Keys_Shortcut.reg
Disable_Telemetry.reg
Disable_Transparency.reg
Disable_Widgets_Service.reg
Disable_Windows_Suggestions.reg
Enable_Dark_Mode.reg
Enable_End_Task.reg
Enable_Last_Active_Click.reg
Hide_3D_Objects_Folder.reg
Hide_Gallery_from_Explorer.reg
Hide_Home_from_Explorer.reg
Hide_Music_Folder.reg
Hide_Onedrive_Folder.reg
Hide_Search_Taskbar.reg
Hide_Taskview_Taskbar.reg
Hide_duplicate_removable_drives_from_navigation_pane_of_File_Explorer.reg
Launch_File_Explorer_To_Downloads.reg
Launch_File_Explorer_To_Home.reg
Launch_File_Explorer_To_OneDrive.reg
Launch_File_Explorer_To_This_PC.reg
MMTaskbarMode_Active.reg
MMTaskbarMode_All.reg
MMTaskbarMode_Main_Active.reg
Show_Extensions_For_Known_File_Types.reg
Show_Hidden_Folders.reg
Show_Search_Box.reg
Show_Search_Icon.reg
Show_Search_Icon_And_Label.reg
Sysprep
Align_Taskbar_Left.reg
Combine_Taskbar_Always.reg
Combine_Taskbar_Never.reg
Combine_Taskbar_When_Full.reg
Disable_AI_Recall.reg
Disable_Animations.reg
Disable_Bing_Cortana_In_Search.reg
Disable_Chat_Taskbar.reg
Disable_Click_to_Do.reg
Disable_Copilot.reg
Disable_DVR.reg
Disable_Desktop_Spotlight.reg
Disable_Enhance_Pointer_Precision.reg
Disable_Lockscreen_Tips.reg
Disable_Phone_Link_In_Start.reg
Disable_Show_More_Options_Context_Menu.reg
Disable_Start_Recommended.reg
Disable_Sticky_Keys_Shortcut.reg
Disable_Telemetry.reg
Disable_Transparency.reg
Disable_Windows_Suggestions.reg
Enable_Dark_Mode.reg
Enable_End_Task.reg
Enable_Last_Active_Click.reg
Hide_Gallery_from_Explorer.reg
Hide_Home_from_Explorer.reg
Hide_Search_Taskbar.reg
Hide_Taskview_Taskbar.reg
Launch_File_Explorer_To_Downloads.reg
Launch_File_Explorer_To_Home.reg
Launch_File_Explorer_To_OneDrive.reg
Launch_File_Explorer_To_This_PC.reg
Show_Extensions_For_Known_File_Types.reg
Show_Hidden_Folders.reg
Show_Search_Box.reg
Show_Search_Icon.reg
Show_Search_Icon_And_Label.reg
Undo
Align_Taskbar_Center.reg
Allow_Edge_Telemetry.reg
Disable_End_Task.reg
Disable_Last_Active_Click.reg
Enable_AI_Recall.reg
Enable_Activity_History.reg
Enable_Animations.reg
Enable_Bing_Cortana_In_Search.reg
Enable_Chat_Taskbar.reg
Enable_Click_to_Do.reg
Enable_Copilot.reg
Enable_DVR.reg
Enable_Desktop_Spotlight.reg
Enable_Edge_AI_Features.reg
Enable_Edge_Ads_And_Suggestions.reg
Enable_Enhance_Pointer_Precision.reg
Enable_Fast_Startup.reg
Enable_Give_access_to_context_menu.reg
Enable_Include_in_library_to_context_menu.reg
Enable_Light_Mode.reg
Enable_Lockscreen_Tips.reg
Enable_Modern_Standby_Networking.reg
Enable_Notepad_AI_Features.reg
Enable_Paint_AI_Features.reg
Enable_Phone_Link_In_Start.reg
Enable_Settings_365_Ads.reg
Enable_Settings_Home.reg
Enable_Share_to_context_menu.reg
Enable_Start_Recommended.reg
Enable_Sticky_Keys_Shortcut.reg
Enable_Telemetry.reg
Enable_Transparency.reg
Enable_W11_Style_Context_Menu.reg
Enable_Widgets_Service.reg
Enable_Windows_Suggestions.reg
Hide_Extensions_For_Known_File_Types.reg
Hide_Hidden_Folders.reg
Show_3D_Objects_Folder.reg
Show_Gallery_in_Explorer.reg
Show_Home_from_Explorer.reg
Show_Music_Folder.reg
Show_Onedrive_folder.reg
Show_Taskview_Taskbar.reg
Show_duplicate_removable_drives_from_navigation_pane_of_File_Explorer.reg
Artefacts
|
Name0 | Value |
|---|---|
| Deobfuscated PowerShell | Process |
70d668ee7892393824f31c73d5d445fb (136.21 KB)
File Structure
Win11Debloat-master
Malicious
.github
FUNDING.yml
ISSUE_TEMPLATE
.gitignore
Appslist.txt
Assets
Menus
DefaultSettings
Info
Start
What is this file.txt
start2.bin
menu.png
menu.png-preview.png
LICENSE
README.md
Regfiles
Align_Taskbar_Left.reg
Combine_MMTaskbar_Always.reg
Combine_MMTaskbar_Never.reg
Combine_MMTaskbar_When_Full.reg
Combine_Taskbar_Always.reg
Combine_Taskbar_Never.reg
Combine_Taskbar_When_Full.reg
Disable_AI_Recall.reg
Disable_Animations.reg
Disable_Bing_Cortana_In_Search.reg
Disable_Chat_Taskbar.reg
Disable_Click_to_Do.reg
Disable_Copilot.reg
Disable_DVR.reg
Disable_Desktop_Spotlight.reg
Disable_Edge_AI_Features.reg
Disable_Edge_Ads_And_Suggestions.reg
Disable_Enhance_Pointer_Precision.reg
Disable_Fast_Startup.reg
Disable_Give_access_to_context_menu.reg
Disable_Include_in_library_from_context_menu.reg
Disable_Lockscreen_Tips.reg
Disable_Modern_Standby_Networking.reg
Disable_Notepad_AI_Features.reg
Disable_Paint_AI_Features.reg
Disable_Phone_Link_In_Start.reg
Disable_Settings_365_Ads.reg
Disable_Settings_Home.reg
Disable_Share_from_context_menu.reg
Disable_Show_More_Options_Context_Menu.reg
Disable_Start_Recommended.reg
Disable_Sticky_Keys_Shortcut.reg
Disable_Telemetry.reg
Disable_Transparency.reg
Disable_Widgets_Service.reg
Disable_Windows_Suggestions.reg
Enable_Dark_Mode.reg
Enable_End_Task.reg
Enable_Last_Active_Click.reg
Hide_3D_Objects_Folder.reg
Hide_Gallery_from_Explorer.reg
Hide_Home_from_Explorer.reg
Hide_Music_Folder.reg
Hide_Onedrive_Folder.reg
Hide_Search_Taskbar.reg
Hide_Taskview_Taskbar.reg
Hide_duplicate_removable_drives_from_navigation_pane_of_File_Explorer.reg
Launch_File_Explorer_To_Downloads.reg
Launch_File_Explorer_To_Home.reg
Launch_File_Explorer_To_OneDrive.reg
Launch_File_Explorer_To_This_PC.reg
MMTaskbarMode_Active.reg
MMTaskbarMode_All.reg
MMTaskbarMode_Main_Active.reg
Show_Extensions_For_Known_File_Types.reg
Show_Hidden_Folders.reg
Show_Search_Box.reg
Show_Search_Icon.reg
Show_Search_Icon_And_Label.reg
Sysprep
Align_Taskbar_Left.reg
Combine_Taskbar_Always.reg
Combine_Taskbar_Never.reg
Combine_Taskbar_When_Full.reg
Disable_AI_Recall.reg
Disable_Animations.reg
Disable_Bing_Cortana_In_Search.reg
Disable_Chat_Taskbar.reg
Disable_Click_to_Do.reg
Disable_Copilot.reg
Disable_DVR.reg
Disable_Desktop_Spotlight.reg
Disable_Enhance_Pointer_Precision.reg
Disable_Lockscreen_Tips.reg
Disable_Phone_Link_In_Start.reg
Disable_Show_More_Options_Context_Menu.reg
Disable_Start_Recommended.reg
Disable_Sticky_Keys_Shortcut.reg
Disable_Telemetry.reg
Disable_Transparency.reg
Disable_Windows_Suggestions.reg
Enable_Dark_Mode.reg
Enable_End_Task.reg
Enable_Last_Active_Click.reg
Hide_Gallery_from_Explorer.reg
Hide_Home_from_Explorer.reg
Hide_Search_Taskbar.reg
Hide_Taskview_Taskbar.reg
Launch_File_Explorer_To_Downloads.reg
Launch_File_Explorer_To_Home.reg
Launch_File_Explorer_To_OneDrive.reg
Launch_File_Explorer_To_This_PC.reg
Show_Extensions_For_Known_File_Types.reg
Show_Hidden_Folders.reg
Show_Search_Box.reg
Show_Search_Icon.reg
Show_Search_Icon_And_Label.reg
Undo
Align_Taskbar_Center.reg
Allow_Edge_Telemetry.reg
Disable_End_Task.reg
Disable_Last_Active_Click.reg
Enable_AI_Recall.reg
Enable_Activity_History.reg
Enable_Animations.reg
Enable_Bing_Cortana_In_Search.reg
Enable_Chat_Taskbar.reg
Enable_Click_to_Do.reg
Enable_Copilot.reg
Enable_DVR.reg
Enable_Desktop_Spotlight.reg
Enable_Edge_AI_Features.reg
Enable_Edge_Ads_And_Suggestions.reg
Enable_Enhance_Pointer_Precision.reg
Enable_Fast_Startup.reg
Enable_Give_access_to_context_menu.reg
Enable_Include_in_library_to_context_menu.reg
Enable_Light_Mode.reg
Enable_Lockscreen_Tips.reg
Enable_Modern_Standby_Networking.reg
Enable_Notepad_AI_Features.reg
Enable_Paint_AI_Features.reg
Enable_Phone_Link_In_Start.reg
Enable_Settings_365_Ads.reg
Enable_Settings_Home.reg
Enable_Share_to_context_menu.reg
Enable_Start_Recommended.reg
Enable_Sticky_Keys_Shortcut.reg
Enable_Telemetry.reg
Enable_Transparency.reg
Enable_W11_Style_Context_Menu.reg
Enable_Widgets_Service.reg
Enable_Windows_Suggestions.reg
Hide_Extensions_For_Known_File_Types.reg
Hide_Hidden_Folders.reg
Show_3D_Objects_Folder.reg
Show_Gallery_in_Explorer.reg
Show_Home_from_Explorer.reg
Show_Music_Folder.reg
Show_Onedrive_folder.reg
Show_Taskview_Taskbar.reg
Show_duplicate_removable_drives_from_navigation_pane_of_File_Explorer.reg
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| Deobfuscated PowerShell | Process Malicious |
70d668ee7892393824f31c73d5d445fb > Win11Debloat-master > Win11Debloat.ps1 > [PowerShell Command] > [PowerShell Command] > [PowerShell Command] |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.