Analysis
-
max time kernel
599s -
max time network
600s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
05-10-2024 12:59
Behavioral task
behavioral1
Sample
LdrAddx64.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
600 seconds
Behavioral task
behavioral2
Sample
LdrAddx64.dll
Resource
win11-20240802-en
windows11-21h2-x64
1 signatures
600 seconds
General
-
Target
LdrAddx64.dll
-
Size
2.1MB
-
MD5
90010f98335ee9e5a46dd1f2f54ab6ef
-
SHA1
5886146225bef728847566c3af5b169a277b4338
-
SHA256
4c2af6abed05ca2b5164ee2c3a999da829b65701fd879dffbc6b73f09209f187
-
SHA512
3da2fad887882e6a6c0a12e79f42b59b3a580412fb9a6dc4c38819e89c5873caef136bb44593ab4b2ceb7e2653d96dbc70a16df965389d41feed79fde76a7852
-
SSDEEP
49152:gGgJ3vE7rwsY5+a+h1cHkUnl/u9Zx/PgxeAaEAbK2V0rG:mavI5+qHxsgxeAgsrG
Score
8/10
Malware Config
Signatures
-
Blocklisted process makes network request 48 IoCs
flow pid Process 17 2280 rundll32.exe 36 2280 rundll32.exe 39 2280 rundll32.exe 48 2280 rundll32.exe 51 2280 rundll32.exe 56 2280 rundll32.exe 59 2280 rundll32.exe 65 2280 rundll32.exe 71 2280 rundll32.exe 74 2280 rundll32.exe 77 2280 rundll32.exe 80 2280 rundll32.exe 83 2280 rundll32.exe 86 2280 rundll32.exe 89 2280 rundll32.exe 92 2280 rundll32.exe 95 2280 rundll32.exe 98 2280 rundll32.exe 101 2280 rundll32.exe 104 2280 rundll32.exe 107 2280 rundll32.exe 110 2280 rundll32.exe 113 2280 rundll32.exe 116 2280 rundll32.exe 119 2280 rundll32.exe 122 2280 rundll32.exe 129 2280 rundll32.exe 135 2280 rundll32.exe 138 2280 rundll32.exe 141 2280 rundll32.exe 144 2280 rundll32.exe 148 2280 rundll32.exe 151 2280 rundll32.exe 154 2280 rundll32.exe 158 2280 rundll32.exe 161 2280 rundll32.exe 164 2280 rundll32.exe 167 2280 rundll32.exe 170 2280 rundll32.exe 173 2280 rundll32.exe 176 2280 rundll32.exe 179 2280 rundll32.exe 182 2280 rundll32.exe 185 2280 rundll32.exe 188 2280 rundll32.exe 191 2280 rundll32.exe 194 2280 rundll32.exe 197 2280 rundll32.exe