Managed XDR

cheaty.rar — malware analysis report

File info

Filename
cheaty.rar
File type
RAR archive data, v5
File size
441.2 KB
First seen
Last seen

Environment

win7/x86 en

Hashes

SHA1
fc4e9ae21b845d601cb865479d603aed7500aa7d
SHA256
daaf335e2077213f368ea4008cc73960aea0ebaab03890e4f11cf927fed718d5
MD5
c7496645db5855f8c0c84a504cd739d9

Signatures

Privilege Escalation

T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1027.002 packer_entropy: Probably contains compressed or encrypted data
T1134 opens_process_token: Opens the access token associated with a process

Discovery

T1057 process_interest: Enumerates processes

Other

yara_rules: Static rules