Managed XDR

c-documents-and-settin...google-chrome.lnk-copy — malware analysis report

File info

Filename
c-documents-and-settings-all-users-application-data-application-data-application-data-application-...data-application-data-application-data-application-data-start-menu-programs-google-chrome.lnk-copy
File type
MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Mon Mar 10 22:47:38 2025, mtime=Wed Sep 3 18:16:31 2025, atime=Wed Feb 26 00:36:44 2025, length=3388000, window=hide
File size
7.5 KB
First seen
Last seen

Environment

win7/x86 en

Hashes

SHA1
3a13a20314f48c0411590662f3c04d3d90db8563
SHA256
14d73fd7f3c3596ea60416a8dcc0b66c18edda87d55b81a5d5960ec4adfed81c
MD5
03c37ea4a5dde521698153cf80fc6d98

Signatures

Privilege Escalation

T1134 opens_thread_token: Opens the access token associated with a thread
T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1134 opens_thread_token: Opens the access token associated with a thread
T1134 opens_process_token: Opens the access token associated with a process

Discovery

T1518 locates_browser: Attempts to identify where browsers are installed

Other

yara_rules: Static rules
create_process_failed: Could not start the process
unexpected_exception: Unexpected exception
creates_suspended_process: Creates suspended process
get_policy_info: Retrieves information about a Policy object