CLRLoad

Description

(ESET) CLRLoad is a generic Windows PE that we have seen in both 32-and 64-bit versions. It is a loader written in C++ that loads the next stage (PNGLoad), which must be a Common Language Runtime (CLR) assembly DLL file. That code is loaded from a file located on disk in a legitimate directory, presumably to mislead victims or incident responders into thinking it is legitimate software.

Names

Name
CLRLoad

Type

Loader

Information

https://www.welivesecurity.com/2022/09/06/worok-big-picture/

Other Information

Uuid

680d43bb-786e-43f7-8e90-896fecb46d48

Last Card Change

2022-09-13

Threat Intelligence Garden

Explorer

CLRLoad

CLRLoad

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks