Analysis
-
max time kernel
1188s -
max time network
1195s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
submitted
11-10-2024 01:59
Behavioral task
behavioral1
Sample
LdrAddx64.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
1 signatures
1200 seconds
Behavioral task
behavioral2
Sample
LdrAddx64.dll
Resource
win11-20241007-en
windows11-21h2-x64
2 signatures
1200 seconds
General
-
Target
LdrAddx64.dll
-
Size
2.1MB
-
MD5
637e0ef5d12fd38122ea517dc57854f3
-
SHA1
169c40bbfa251680af68dbac9dbbca5bfdd60d61
-
SHA256
a20d56ab2e53b3a599af9904f163bb2e1b2bb7f2c98432519e1fbe87c3867e66
-
SHA512
c82f9087dae66a87adf0dbca6834854bb21f15252cc6f571b595895d07f8ce368832bfd380df51c2f4fd07287a7ade0a81b5636a1e72e2ac18ed2dc66f51262d
-
SSDEEP
49152:bGgJ3vE7rwsY5+a+h1cHkUnl/u9Zx/PgxeAaE+bK2i4rG:NavI5+qHxsgxeAenrG
Score
8/10
Malware Config
Signatures
-
Blocklisted process makes network request 55 IoCs
flow pid Process 6 3080 rundll32.exe 18 3080 rundll32.exe 36 3080 rundll32.exe 42 3080 rundll32.exe 44 3080 rundll32.exe 51 3080 rundll32.exe 53 3080 rundll32.exe 56 3080 rundll32.exe 58 3080 rundll32.exe 59 3080 rundll32.exe 61 3080 rundll32.exe 63 3080 rundll32.exe 65 3080 rundll32.exe 67 3080 rundll32.exe 69 3080 rundll32.exe 71 3080 rundll32.exe 76 3080 rundll32.exe 78 3080 rundll32.exe 80 3080 rundll32.exe 83 3080 rundll32.exe 86 3080 rundll32.exe 89 3080 rundll32.exe 91 3080 rundll32.exe 94 3080 rundll32.exe 97 3080 rundll32.exe 100 3080 rundll32.exe 104 3080 rundll32.exe 106 3080 rundll32.exe 108 3080 rundll32.exe 110 3080 rundll32.exe 112 3080 rundll32.exe 114 3080 rundll32.exe 116 3080 rundll32.exe 118 3080 rundll32.exe 120 3080 rundll32.exe 122 3080 rundll32.exe 124 3080 rundll32.exe 126 3080 rundll32.exe 128 3080 rundll32.exe 130 3080 rundll32.exe 132 3080 rundll32.exe 134 3080 rundll32.exe 136 3080 rundll32.exe 138 3080 rundll32.exe 140 3080 rundll32.exe 142 3080 rundll32.exe 144 3080 rundll32.exe 146 3080 rundll32.exe 148 3080 rundll32.exe 150 3080 rundll32.exe 152 3080 rundll32.exe 154 3080 rundll32.exe 156 3080 rundll32.exe 158 3080 rundll32.exe 160 3080 rundll32.exe