Managed XDR

vtdl_1753790548_s_wjpni6 — malware analysis report

File info

Filename
vtdl_1753790548_s_wjpni6
File type
MS Windows shortcut, Item id list present, ctime=Sun Mar 18 17:21:26 2018, mtime=Sun Mar 18 17:21:26 2018, atime=Sun Mar 18 17:21:26 2018, length=0, window=hide
File size
1 KB
First seen
Last seen

Environment

win7/x86 en

Hashes

SHA1
9a4aeb36e6548b9bfdcb0de8a2f66d7d9d2035dc
SHA256
095c3c592ba43a6f622c7b6e8d43f98c6633addb3d3e5e1d999ef8c8ccd57aaa
MD5
6eeb6abb228cfe35b27df5f4c6d5750c

Signatures

Privilege Escalation

T1134 opens_thread_token: Opens the access token associated with a thread
T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1134 opens_thread_token: Opens the access token associated with a thread
T1134 opens_process_token: Opens the access token associated with a process

Other

yara_rules: Static rules
unexpected_exception: Unexpected exception
no_graphical_activity: No graphic activity
creates_suspended_process: Creates suspended process
Managed XDR