Managed XDR

vtdl_1752111382_5wqcn789 — malware analysis report

File info

Filename
vtdl_1752111382_5wqcn789
File type
MS Windows shortcut, Item id list present, ctime=Sun Sep 13 10:48:31 2009, mtime=Sun Sep 13 10:48:31 2009, atime=Sun Sep 13 10:48:31 2009, length=0, window=hide
File size
101 KB
First seen
Last seen

Environment

win7/x86 en

Hashes

SHA1
9d3a9ba7f54630963ff3a4d6984b3899c19e54f7
SHA256
5ff3e45dddef88d47f4f1d9f7f39253c856bc1bb5557878801528e44907d4ef3
MD5
6dc9707bb7dbcb9d88b97f59fd664149

Signatures

Privilege Escalation

T1134 opens_thread_token: Opens the access token associated with a thread
T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1134 opens_thread_token: Opens the access token associated with a thread
T1134 opens_process_token: Opens the access token associated with a process

Other

yara_rules: Static rules
unexpected_exception: Unexpected exception
no_graphical_activity: No graphic activity
creates_suspended_process: Creates suspended process
Managed XDR