Managed XDR

resources.rar — malware analysis report

File info

Filename
resources.rar
File type
RAR archive data, v5
File size
1.6 MB
First seen
Last seen

Environment

win7/x64 en

Hashes

SHA1
7f3e4ae689ff313e10958158dda7d2d643b1dfe9
SHA256
0755f627f08f6f6248569de9ffa2b70cb8ca21fb093e0fcc903f17c8eefa15e8
MD5
74527573d63ddc8437bcca8903534d04

Signatures

Privilege Escalation

T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1027.002 unnamed_memory_regions: Code was executed in unnamed regions
T1027.002 packer_upx: The executable file is compressed using UPX
T1027.002 packer_entropy: Probably contains compressed or encrypted data
T1134 opens_process_token: Opens the access token associated with a process

Other

yara_rules: Static rules
no_graphical_activity: No graphic activity
many_files_in_archive: The archive contains more than 5 files