67edf175321f92df454c58fc64babaf1905a2843b0fe7105a3d5c6146c0e9898

Submit
Reports

Overview

overview

Static

static

GlobalProt...n.html

windows7-x64

GlobalProt...n.html

windows10-2004-x64

GlobalProt...n.html

windows7-x64

GlobalProt...n.html

windows10-2004-x64

GlobalProt...n.html

windows7-x64

GlobalProt...n.html

windows10-2004-x64

GlobalProt...el.exe

windows7-x64

GlobalProt...el.exe

windows10-2004-x64

GlobalProt...st.dll

windows7-x64

GlobalProt...st.dll

windows10-2004-x64

GlobalProt...me.jar

windows7-x64

GlobalProt...me.jar

windows10-2004-x64

GlobalProt...af.jar

windows7-x64

GlobalProt...af.jar

windows10-2004-x64

GlobalProt...64.exe

windows7-x64

GlobalProt...64.exe

windows10-2004-x64

GlobalProt...e.html

windows7-x64

GlobalProt...e.html

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

GlobalProt...-0.dll

windows10-2004-x64

Analysis

max time kernel
139s
max time network
126s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
21-06-2024 01:17

Sharing

Copy URL

Twitter E-mail

Static task

static1

jnlp

1 signatures

Behavioral task

behavioral1

Sample

GlobalProtect64/.install4j/i4j_extf_6_7caten.html

Resource

win7-20240508-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

GlobalProtect64/.install4j/i4j_extf_6_7caten.html

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

GlobalProtect64/.install4j/i4j_extf_7_7caten.html

Resource

win7-20240419-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral4

Sample

GlobalProtect64/.install4j/i4j_extf_7_7caten.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral5

Sample

GlobalProtect64/.install4j/i4j_extf_8_7caten.html

Resource

win7-20240508-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral6

Sample

GlobalProtect64/.install4j/i4j_extf_8_7caten.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral7

Sample

GlobalProtect64/.install4j/i4jdel.exe

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

GlobalProtect64/.install4j/i4jdel.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

GlobalProtect64/.install4j/i4jinst.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

GlobalProtect64/.install4j/i4jinst.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

GlobalProtect64/.install4j/i4jruntime.jar

Resource

win7-20240611-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

GlobalProtect64/.install4j/i4jruntime.jar

Resource

win10v2004-20240508-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

GlobalProtect64/.install4j/user/flatlaf.jar

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

GlobalProtect64/.install4j/user/flatlaf.jar

Resource

win10v2004-20240508-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral15

Sample

GlobalProtect64/GlobalProtect64.exe

Resource

win7-20240611-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral16

Sample

GlobalProtect64/GlobalProtect64.exe

Resource

win10v2004-20240611-en

wikiloader backdoor loader

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral17

Sample

GlobalProtect64/jre/Welcome.html

Resource

win7-20240419-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral18

Sample

GlobalProtect64/jre/Welcome.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral19

Sample

GlobalProtect64/jre/bin/api-ms-win-core-console-l1-1-0.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

GlobalProtect64/jre/bin/api-ms-win-core-datetime-l1-1-0.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

GlobalProtect64/jre/bin/api-ms-win-core-debug-l1-1-0.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

GlobalProtect64/jre/bin/api-ms-win-core-errorhandling-l1-1-0.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

GlobalProtect64/jre/bin/api-ms-win-core-file-l1-1-0.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

GlobalProtect64/jre/bin/api-ms-win-core-file-l1-2-0.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

GlobalProtect64/jre/bin/api-ms-win-core-file-l2-1-0.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

GlobalProtect64/jre/bin/api-ms-win-core-handle-l1-1-0.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

GlobalProtect64/jre/bin/api-ms-win-core-heap-l1-1-0.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

GlobalProtect64/jre/bin/api-ms-win-core-interlocked-l1-1-0.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

GlobalProtect64/jre/bin/api-ms-win-core-libraryloader-l1-1-0.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

GlobalProtect64/jre/bin/api-ms-win-core-localization-l1-2-0.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

GlobalProtect64/jre/bin/api-ms-win-core-memory-l1-1-0.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

GlobalProtect64/jre/bin/api-ms-win-core-namedpipe-l1-1-0.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

GlobalProtect64/jre/bin/api-ms-win-core-file-l1-1-0.dll
Size

21KB
MD5

a26c7ffcf18b62904dab7786de638ea6
SHA1

b28489bc38ee2f522ee83dcf49faeb96f39a77e3
SHA256

74075b7af84378cee0d035c020b320ee52a120b21f71a4972093c9e23d534830
SHA512

768c8d7818acacf83d8bd020ab239408673f6cf9e0e8f1be1dab2dd58c5df4e45b970baf7d8d09887280be0788790eacd6126274deaca6b1c4b7bad3e335b34f
SSDEEP

192:sohaYPvVX8rFTscWuufhWrlFO0ruDBks/nGfe4pBjSb68WebtuVaVWQ4mWst1qnq:JTPvVXiW5hWB80aq0GftpBjQZplBLcQ

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\GlobalProtect64\jre\bin\api-ms-win-core-file-l1-1-0.dll,#1
1⤵
PID:2036

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads