Managed XDR

vtdl_1752109348_4g0g0hur — malware analysis report

File info

Filename
vtdl_1752109348_4g0g0hur
File type
MS Windows shortcut, Has Relative path, Has command line arguments, Icon number=0, ctime=Mon Jan 1 00:00:00 1601, mtime=Mon Jan 1 00:00:00 1601, atime=Mon Jan 1 00:00:00 1601, length=0, window=hidenormalshowminimized
File size
5.9 KB
First seen
Last seen

Environment

win7/x64 en

Hashes

SHA1
c7373531b0ba958efc58368521ac26bb475061b5
SHA256
29837d0d3202758063185828c8f8d9e0b7b42b365c8941cc926d2d7c7bae2fb3
MD5
6e7e24218d1525e715aaffae691d23e8

Signatures

Execution

T1204 suspicious_lnk: LNK file with suspicious content
T1059.001 suspicious_powershell: Creates suspicious powershell process
T1059.001 suspicious_process: Spawns a suspicious process

Defense Evasion

T1027.002 unnamed_memory_regions: Code was executed in unnamed regions

Other

unexpected_exception: Unexpected exception
no_graphical_activity: No graphic activity
creates_suspended_process: Creates suspended process
yara_rules: Static rules
Managed XDR