Overview

overview

8

Static

static

3

GF.dll

windows11-21h2-x64

8

run me as admin.bat

windows11-21h2-x64

8

Analysis

  • max time kernel
    102s
  • max time network
    94s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    01-01-2025 02:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    GF.dll

  • Size

    661KB

  • MD5

    eeae6109ee66a0d27b4ec6886136ab87

  • SHA1

    1d081b70f1a8d388adb46d31cfc61940d3dfdfc0

  • SHA256

    bcfcae356a1a5cd4a61c50032446830391f489ae809c59c60719740997c75e25

  • SHA512

    70c9c4b0f842c49ff0fdbfb273b97dc83c2bc4d60a24a4ccd64815a5f3f428cdfec56dbfb0f83debe6fe13a036bbeacddff1800d4e382f3cdce4fe9fad4b7a34

  • SSDEEP

    12288:VPQN/Z2bYpTdW6fCYDHfb5y7ACtKN5OfwM/ZP0lv43olteDAL/:SZ2baI6fCYzbwG5O5/9Soe

Score
8/10

Malware Config

Signatures

  • Blocklisted process makes network request 1 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\GF.dll,#1
    1⤵
    • Blocklisted process makes network request
    PID:1968

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads