Glide3x.dll
- Filename:
- Glide3x.dll
- md5:
- 582b452dca5610cfab091a557c256352
- sha1:
- 6b8c49a83dcefa1611ae961d6044b9a5f7a6a7db
- sha256:
- 22c6b15e94a267afe0741bfd2620dc018ddc23ca57206b170094e5f1b8173608
- Filetype:
- PE32 executable (DLL) (GUI) Intel 80386, for MS Wi ...
- Size (Bytes):
- 225792
- Classification:
- malicious
- Indexed:
- Wed Jul 02 2025 19:40:34 GMT+0000 (2 months ago)
- Last modified:
- Wed Jul 02 2025 21:22:24 GMT+0000 (2 months ago)
Sample information
2
Antivirus detections0
IDS alerts79
Processes0
Http events0
Contacted hosts0
DNS Requests5.8
Score
Current activity of this Sample
Blacklist timeline
First seen: Wed Jul 02 2025 20:00:04 GMT+0000
Last seen: Wed Jul 02 2025 21:22:23 GMT+0000
Period: an hour
Last seen: Wed Jul 02 2025 21:22:23 GMT+0000
Period: an hour
Hashes
In depth details
Dates
Developers can check API Specification here:
Request:
curl -H "Authorization: Bearer <API_KEY>" https://api.maltiverse.com/sample/22c6b15e94a267afe0741bfd2620dc018ddc23ca57206b170094e5f1b8173608
Request:
Alternatively you can use Maltiverse Python3 Library:
import requests
import json
url = 'https://api.maltiverse.com/sample/22c6b15e94a267afe0741bfd2620dc018ddc23ca57206b170094e5f1b8173608'
response = requests.get(url)
print(json.dumps(response.json(), indent=4, sort_keys=True))
Request:
$url = 'https://api.maltiverse.com/sample/22c6b15e94a267afe0741bfd2620dc018ddc23ca57206b170094e5f1b8173608'
$headers = @{Authorization=("Bearer {0}" -f "<API_KEY>")}
$response = Invoke-RestMethod $url -Headers $headers
Write-Output $response
Response:
{
"antivirus": [
{
"description": "Malicious (score: 100)",
"name": "Cynet"
},
{
"description": "BehavesLike.Win32.Dropper.dc",
"name": "Skyhigh"
}
],
"blacklist": [
{
"count": 8,
"description": "Generic Malware",
"first_seen": "2025-07-02 20:00:04",
"last_seen": "2025-07-02 21:22:23",
"ref": [
21745
],
"source": "Hybrid-Analysis"
}
],
"classification": "malicious",
"creation_time": "2025-07-02 19:40:34",
"filename": [
"Glide3x.dll"
],
"filetype": "PE32 executable (DLL) (GUI) Intel 80386, for MS Wi ...",
"is_alive": false,
"is_cdn": false,
"is_cnc": false,
"is_distributing_malware": false,
"is_hosting": false,
"is_iot_threat": false,
"is_known_attacker": false,
"is_known_scanner": false,
"is_mining_pool": false,
"is_open_proxy": false,
"is_phishing": false,
"is_sinkhole": false,
"is_storing_phishing": false,
"is_tor_node": false,
"is_vpn_node": false,
"md5": "582b452dca5610cfab091a557c256352",
"modification_time": "2025-07-02 21:22:24",
"process_list": [
{
"name": "<Ignored Process>",
"uid": "00000000-00007880"
},
{
"commandline": "\"C:\\Glide3x.dll\",#1",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00000660"
},
{
"commandline": "\"C:\\Glide3x.dll\",#2",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00003096"
},
{
"commandline": "\"C:\\Glide3x.dll\",#4",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00007316"
},
{
"commandline": "\"C:\\Glide3x.dll\",#3",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00008572"
},
{
"commandline": "-u -p 8572 -s 600",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00006288"
},
{
"commandline": "-u -p 8572 -s 600",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00007936"
},
{
"commandline": "\"C:\\Glide3x.dll\",#5",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00007220"
},
{
"commandline": "\"C:\\Glide3x.dll\",#6",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00004336"
},
{
"commandline": "\"C:\\Glide3x.dll\",#7",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00009072"
},
{
"commandline": "\"C:\\Glide3x.dll\",#8",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00008976"
},
{
"commandline": "\"C:\\Glide3x.dll\",#9",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00008300"
},
{
"commandline": "\"C:\\Glide3x.dll\",#10",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00008556"
},
{
"commandline": "\"C:\\Glide3x.dll\",#11",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00009764"
},
{
"commandline": "\"C:\\Glide3x.dll\",#12",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00005072"
},
{
"commandline": "\"C:\\Glide3x.dll\",#13",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00009460"
},
{
"commandline": "\"C:\\Glide3x.dll\",#14",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00005976"
},
{
"commandline": "\"C:\\Glide3x.dll\",#15",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00005820"
},
{
"commandline": "\"C:\\Glide3x.dll\",#16",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00001368"
},
{
"commandline": "\"C:\\Glide3x.dll\",#17",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00001840"
},
{
"commandline": "\"C:\\Glide3x.dll\",#18",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00010032"
},
{
"commandline": "\"C:\\Glide3x.dll\",#19",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00000876"
},
{
"commandline": "\"C:\\Glide3x.dll\",#20",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00010196"
},
{
"commandline": "\"C:\\Glide3x.dll\",#21",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00005188"
},
{
"commandline": "\"C:\\Glide3x.dll\",#22",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00007704"
},
{
"commandline": "\"C:\\Glide3x.dll\",#23",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00000644"
},
{
"commandline": "\"C:\\Glide3x.dll\",#24",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00004008"
},
{
"commandline": "\"C:\\Glide3x.dll\",#25",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00007404"
},
{
"commandline": "\"C:\\Glide3x.dll\",#26",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00005468"
},
{
"commandline": "\"C:\\Glide3x.dll\",#27",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00003424"
},
{
"commandline": "\"C:\\Glide3x.dll\",#28",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00009340"
},
{
"commandline": "\"C:\\Glide3x.dll\",#29",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00009980"
},
{
"commandline": "\"C:\\Glide3x.dll\",#30",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00007856"
},
{
"commandline": "\"C:\\Glide3x.dll\",#31",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00002276"
},
{
"commandline": "\"C:\\Glide3x.dll\",#32",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00000512"
},
{
"commandline": "-u -p 512 -s 588",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00000788"
},
{
"commandline": "-u -p 512 -s 588",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00002996"
},
{
"commandline": "-u -p 512 -s 588",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00009804"
},
{
"commandline": "-pss -s 444 -p 512 -ip 512",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00006712"
},
{
"commandline": "\"C:\\Glide3x.dll\",#33",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00006132"
},
{
"commandline": "\"C:\\Glide3x.dll\",#34",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00003520"
},
{
"commandline": "\"C:\\Glide3x.dll\",#35",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00005224"
},
{
"commandline": "\"C:\\Glide3x.dll\",#36",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00009612"
},
{
"commandline": "\"C:\\Glide3x.dll\",#37",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00000112"
},
{
"commandline": "\"C:\\Glide3x.dll\",#38",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00001884"
},
{
"commandline": "\"C:\\Glide3x.dll\",#39",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00009084"
},
{
"commandline": "\"C:\\Glide3x.dll\",#40",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00006780"
},
{
"commandline": "-u -p 6780 -s 588",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00009348"
},
{
"commandline": "-u -p 6780 -s 588",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00005312"
},
{
"commandline": "-u -p 6780 -s 588",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00008836"
},
{
"commandline": "-pss -s 376 -p 6780 -ip 6780",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00006496"
},
{
"commandline": "\"C:\\Glide3x.dll\",#41",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00004304"
},
{
"commandline": "\"C:\\Glide3x.dll\",#42",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00007968"
},
{
"commandline": "\"C:\\Glide3x.dll\",#43",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00008788"
},
{
"commandline": "\"C:\\Glide3x.dll\",#44",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00004004"
},
{
"commandline": "\"C:\\Glide3x.dll\",#45",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00002072"
},
{
"commandline": "\"C:\\Glide3x.dll\",#46",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00005696"
},
{
"commandline": "\"C:\\Glide3x.dll\",#47",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00002680"
},
{
"commandline": "\"C:\\Glide3x.dll\",#48",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00007288"
},
{
"commandline": "\"C:\\Glide3x.dll\",#49",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00007692"
},
{
"commandline": "-u -p 7692 -s 588",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00003956"
},
{
"commandline": "-u -p 7692 -s 588",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00004164"
},
{
"commandline": "-u -p 7692 -s 588",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00004696"
},
{
"commandline": "\"C:\\Glide3x.dll\",#50",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00003604"
},
{
"commandline": "-pss -s 516 -p 7692 -ip 7692",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00009284"
},
{
"commandline": "\"C:\\Glide3x.dll\",#51",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00005136"
},
{
"commandline": "\"C:\\Glide3x.dll\",#52",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00004824"
},
{
"commandline": "\"C:\\Glide3x.dll\",#53",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00005892"
},
{
"commandline": "-u -p 5892 -s 588",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00004180"
},
{
"commandline": "-u -p 5892 -s 588",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00005996"
},
{
"commandline": "-u -p 5892 -s 588",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00007080"
},
{
"commandline": "\"C:\\Glide3x.dll\",#54",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00003884"
},
{
"commandline": "-pss -s 576 -p 5892 -ip 5892",
"name": "WerFault.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\WerFault.exe",
"sha256": "5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d",
"uid": "00000000-00000916"
},
{
"commandline": "\"C:\\Glide3x.dll\",#55",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00007600"
},
{
"commandline": "\"C:\\Glide3x.dll\",#58",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00009536"
},
{
"commandline": "\"C:\\Glide3x.dll\",#59",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00007196"
},
{
"commandline": "\"C:\\Glide3x.dll\",#61",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00004184"
},
{
"commandline": "\"C:\\Glide3x.dll\",#62",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00003632"
},
{
"commandline": "\"C:\\Glide3x.dll\",#63",
"name": "rundll32.exe",
"normalizedpath": "%WINDIR%\\SysWOW64\\rundll32.exe",
"sha256": "c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c",
"uid": "00000000-00000668"
}
],
"score": 5.8,
"scoring_executed_time": "2025-07-02 20:00:06",
"sha1": "6b8c49a83dcefa1611ae961d6044b9a5f7a6a7db",
"sha256": "22c6b15e94a267afe0741bfd2620dc018ddc23ca57206b170094e5f1b8173608",
"size": 225792,
"type": "sample"
}
Antivirus positives
| Antivirus | Threat |
|---|---|
| Cynet | Malicious (score: 100) |
| Skyhigh | BehavesLike.Win32.Dropper.dc |
Process list
- uid
- 00000000-00007880
- commandline
- name
- <Ignored Process>
- normalizedpath
- sha256
- uid
- 00000000-00000660
- commandline
- "C:\Glide3x.dll",#1
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00003096
- commandline
- "C:\Glide3x.dll",#2
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00007316
- commandline
- "C:\Glide3x.dll",#4
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00008572
- commandline
- "C:\Glide3x.dll",#3
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00006288
- commandline
- -u -p 8572 -s 600
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00007936
- commandline
- -u -p 8572 -s 600
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00007220
- commandline
- "C:\Glide3x.dll",#5
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00004336
- commandline
- "C:\Glide3x.dll",#6
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00009072
- commandline
- "C:\Glide3x.dll",#7
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00008976
- commandline
- "C:\Glide3x.dll",#8
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00008300
- commandline
- "C:\Glide3x.dll",#9
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00008556
- commandline
- "C:\Glide3x.dll",#10
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00009764
- commandline
- "C:\Glide3x.dll",#11
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00005072
- commandline
- "C:\Glide3x.dll",#12
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00009460
- commandline
- "C:\Glide3x.dll",#13
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00005976
- commandline
- "C:\Glide3x.dll",#14
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00005820
- commandline
- "C:\Glide3x.dll",#15
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00001368
- commandline
- "C:\Glide3x.dll",#16
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00001840
- commandline
- "C:\Glide3x.dll",#17
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00010032
- commandline
- "C:\Glide3x.dll",#18
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00000876
- commandline
- "C:\Glide3x.dll",#19
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00010196
- commandline
- "C:\Glide3x.dll",#20
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00005188
- commandline
- "C:\Glide3x.dll",#21
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00007704
- commandline
- "C:\Glide3x.dll",#22
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00000644
- commandline
- "C:\Glide3x.dll",#23
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00004008
- commandline
- "C:\Glide3x.dll",#24
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00007404
- commandline
- "C:\Glide3x.dll",#25
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00005468
- commandline
- "C:\Glide3x.dll",#26
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00003424
- commandline
- "C:\Glide3x.dll",#27
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00009340
- commandline
- "C:\Glide3x.dll",#28
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00009980
- commandline
- "C:\Glide3x.dll",#29
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00007856
- commandline
- "C:\Glide3x.dll",#30
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00002276
- commandline
- "C:\Glide3x.dll",#31
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00000512
- commandline
- "C:\Glide3x.dll",#32
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00000788
- commandline
- -u -p 512 -s 588
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00002996
- commandline
- -u -p 512 -s 588
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00009804
- commandline
- -u -p 512 -s 588
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00006712
- commandline
- -pss -s 444 -p 512 -ip 512
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00006132
- commandline
- "C:\Glide3x.dll",#33
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00003520
- commandline
- "C:\Glide3x.dll",#34
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00005224
- commandline
- "C:\Glide3x.dll",#35
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00009612
- commandline
- "C:\Glide3x.dll",#36
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00000112
- commandline
- "C:\Glide3x.dll",#37
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00001884
- commandline
- "C:\Glide3x.dll",#38
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00009084
- commandline
- "C:\Glide3x.dll",#39
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00006780
- commandline
- "C:\Glide3x.dll",#40
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00009348
- commandline
- -u -p 6780 -s 588
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00005312
- commandline
- -u -p 6780 -s 588
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00008836
- commandline
- -u -p 6780 -s 588
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00006496
- commandline
- -pss -s 376 -p 6780 -ip 6780
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00004304
- commandline
- "C:\Glide3x.dll",#41
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00007968
- commandline
- "C:\Glide3x.dll",#42
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00008788
- commandline
- "C:\Glide3x.dll",#43
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00004004
- commandline
- "C:\Glide3x.dll",#44
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00002072
- commandline
- "C:\Glide3x.dll",#45
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00005696
- commandline
- "C:\Glide3x.dll",#46
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00002680
- commandline
- "C:\Glide3x.dll",#47
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00007288
- commandline
- "C:\Glide3x.dll",#48
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00007692
- commandline
- "C:\Glide3x.dll",#49
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00003956
- commandline
- -u -p 7692 -s 588
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00004164
- commandline
- -u -p 7692 -s 588
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00004696
- commandline
- -u -p 7692 -s 588
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00003604
- commandline
- "C:\Glide3x.dll",#50
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00009284
- commandline
- -pss -s 516 -p 7692 -ip 7692
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00005136
- commandline
- "C:\Glide3x.dll",#51
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00004824
- commandline
- "C:\Glide3x.dll",#52
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00005892
- commandline
- "C:\Glide3x.dll",#53
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00004180
- commandline
- -u -p 5892 -s 588
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00005996
- commandline
- -u -p 5892 -s 588
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00007080
- commandline
- -u -p 5892 -s 588
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00003884
- commandline
- "C:\Glide3x.dll",#54
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00000916
- commandline
- -pss -s 576 -p 5892 -ip 5892
- name
- WerFault.exe
- normalizedpath
- %WINDIR%\SysWOW64\WerFault.exe
- sha256
- 5cd3bb2e4b62180978f536450f48483107f74c8fcf8606c4beec01ef5d2cf01d
- uid
- 00000000-00007600
- commandline
- "C:\Glide3x.dll",#55
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00009536
- commandline
- "C:\Glide3x.dll",#58
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00007196
- commandline
- "C:\Glide3x.dll",#59
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00004184
- commandline
- "C:\Glide3x.dll",#61
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00003632
- commandline
- "C:\Glide3x.dll",#62
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c
- uid
- 00000000-00000668
- commandline
- "C:\Glide3x.dll",#63
- name
- rundll32.exe
- normalizedpath
- %WINDIR%\SysWOW64\rundll32.exe
- sha256
- c4815ead0abe44972ae918cab9b21289b29cf5d3471fe102c27e1a86601a729c