Managed XDR

vtdl_1753892645_16tabi0l — malware analysis report

File info

Filename
vtdl_1753892645_16tabi0l
File type
PDF document, version 1.4
File size
44.4 KB
First seen
Last seen

Environment

win7/x86 en

Hashes

SHA1
2c739740f0227e155eb8e4e0f7dc6464d176bac5
SHA256
38d2f89fb794a9cacd66aa7a13681df68c1b5567af945bb8d41b23c530ad9cf5
MD5
fa59d46c19155258a7c02b65098f748c

Signatures

Initial Access

T1192 html_urls: HTML-document downloads a file

Privilege Escalation

T1134 opens_thread_token: Opens the access token associated with a thread
T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1134 opens_thread_token: Opens the access token associated with a thread
T1134 opens_process_token: Opens the access token associated with a process

Other

yara_rules: Static rules
pdf_compressed_stream: Contains an object with compressed stream
get_policy_info: Retrieves information about a Policy object
office_links: Office file contains external links