Managed XDR

dianoga.6.1.0.nupkg — отчёт о динамическом анализе вредоносного файла

Информация о файле

Имя файла
dianoga.6.1.0.nupkg
Тип файла
Zip archive data, at least v2.0 to extract
Размер файла
21.4 MB
Первое обнаружение
Последнее обнаружение

Окружение

w10/x64 en

Хеши

SHA1
7c43573e209512d0081c313ff8a4a51a19284ca6
SHA256
73aa03f0b47cfe0ce3014282031d84df1c80b86f554f9c6db2cb541e6a5099e7
MD5
74c09702149994cc1ae470f9a7db618d

Сигнатуры

Initial Access

T1192 html_urls: HTML-document downloads a file

Privilege Escalation

T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1027.002 packer_entropy: Probably contains compressed or encrypted data
T1134 opens_process_token: Opens the access token associated with a process

Other

yara_rules: Static rules
has_pdb: This executable file has a PDB path
test_check_service: Starts services
pe_overlay: PE file contains overlay
many_files_in_archive: The archive contains more than 5 files
Managed XDR