Defense Evasion
T1027.002 packer_entropy: Probably contains compressed or encrypted data
Other
yara_rules: Static rules
require_administrator: Requests administrator privileges
suspicious_network_port: Performs TCP or UDP request to non-standard port
pe_overlay: PE file contains overlay
ce_info: SimpleHelp Configuration Data found
valid_authenticode: The digital signature has been verified