Managed XDR
Group-IB MDP Report
File info
Filename: vtdl_3u81r8g3
File Type: PE32 executable (GUI) Intel 80386, for MS Windows
File Size: 949.5 KB
Env info
win7/x86 en
Hashes
SHA1: 6bc510b50af60bffa33c112074f2c0b95186bbab
SHA256: ddd49cf549451a843e3d665f508c84c9a80cbf32dabe67a79b1484c0a3b60521
MD5: 009609eaff7544ada0ab8ec4d4991171
Signatures
Privilege Escalation
T1134 opens_process_token: Opens the access token associated with a process
Defense Evasion
T1134 opens_process_token: Opens the access token associated with a process
Other
yara_rules: Static rules
no_graphical_activity: No graphic activity
has_pdb: This executable file has a PDB path
next report: bb2aad6b-399c-4571-9928-82f6ab35a548
previous report: d05e6749-3a92-4db7-a47c-a2660a4ac1be
Managed XDR