Managed XDR

vtdl_1741964289_kfj5eeas — malware analysis report

File info

Filename
vtdl_1741964289_kfj5eeas
File type
Zip archive data, at least v2.0 to extract
File size
25.9 MB
First seen
Last seen

Environment

win7/x86 en

Hashes

SHA1
ee1ea79fdddfdd19bec36c4568a68c14522f05bb
SHA256
906cf870063e2d58cfbcc7c27d5bccad2a81e7397b32c94cb581e9c1782cbfb8
MD5
04d9fcfda8c8f5b812aac908b19508b2

Signatures

Privilege Escalation

T1134 opens_thread_token: Opens the access token associated with a thread
T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1134 opens_thread_token: Opens the access token associated with a thread
T1134 opens_process_token: Opens the access token associated with a process

Other

yara_rules: Static rules
creates_in_programdata: Creates files in the ProgramData directory