Managed XDR

c6c6a0d6783ef1680c68ba...394b46e49d236423e8.lnk — malware analysis report

File info

Filename
c6c6a0d6783ef1680c68ba7fd70cc9f80d761cd00a0f05394b46e49d236423e8.lnk
File type
Windows shortcut file
File size
2.4 KB
First seen
Last seen

Environment

win7/x86 en

Hashes

SHA1
6e3561dacfa5f1510a133f35c007dab88c09a14f
SHA256
596cf6b74265570dc0c064d0f60e8201adf705b73800617e54fef84ce81eeda1
MD5
67b8ed5bcf24d2d0c8739c566ba218ad

Signatures

Privilege Escalation

T1134 opens_thread_token: Opens the access token associated with a thread
T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1134 opens_thread_token: Opens the access token associated with a thread
T1134 opens_process_token: Opens the access token associated with a process

Other

yara_rules: Static rules
unexpected_exception: Unexpected exception
no_graphical_activity: No graphic activity
creates_suspended_process: Creates suspended process