Managed XDR

unpack_dump.exe — malware analysis report

File info

Filename
unpack_dump.exe
File type
PE32 executable (GUI) Intel 80386, for MS Windows
File size
800.5 KB
First seen
Last seen

Environment

win7/x86 en

Hashes

SHA1
dd429198da7a6afa0fc2523c08d5b6e727827806
SHA256
f57bb0be3f4d8557991bb6bd176d34f0c9f30ab71db1f6682a0dff9fef450bde
MD5
88f216e3579648282bd6279b7e50e90c

Signatures

Privilege Escalation

T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1134 opens_process_token: Opens the access token associated with a process

Other

yara_rules: Static rules
no_graphical_activity: No graphic activity