Managed XDR

vtdl_1757081749_o64q1tql — malware analysis report

File info

Filename
vtdl_1757081749_o64q1tql
File type
PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows
File size
728 KB
First seen
Last seen

Environment

win7/x64 en

Hashes

SHA1
40fc478b6639a4901f437a67271605599902135e
SHA256
ae7f7f39753dc1899768d54d3f80c94929ddf7a6f04873dccb82005b3a3b3c8f
MD5
c2ab34d27c46d46d4d5665dad28f28b3

Signatures

Privilege Escalation

T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1027.002 packer_entropy: Probably contains compressed or encrypted data
T1134 opens_process_token: Opens the access token associated with a process

Other

yara_rules: Static rules
no_graphical_activity: No graphic activity