General
-
Target
Robux_Generator_2022.zip
-
Size
4.3MB
-
Sample
220904-ccfk7agcep
-
MD5
d323482a2b425bd6880358d4b035f1bd
-
SHA1
8cd0f96be01d58afdfc132df5520fe0b3b02ba2f
-
SHA256
10eabb4d8e673445cc7f5473c4e3ebe37421be2ccd483d33111512587414e619
-
SHA512
0dbf53915b1d6233e2895547e739afdd9e7c7d37c81a5dc338c022c38576fd3a4f3a2789200ed607819c0751cf1b98fada5716795a617f20b9ef5b0251ea13bc
-
SSDEEP
98304:S0jmvtGJ6AtTJuiE6uVkWjZemvRCYVVaj0UC5KDnGo/p504:S0h6AlJuiNuVrjZtvVVg9hf
Static task
static1
Behavioral task
behavioral1
Sample
Robux_Generator_2022.exe
Resource
win7-20220812-en
Malware Config
Targets
-
-
Target
Robux_Generator_2022.exe
-
Size
4.3MB
-
MD5
5fd12b46ca997e856bb0defe34eb8632
-
SHA1
8d94ad02ed1ee5315280f4c586e08516a68b5f03
-
SHA256
43548a7cde8b897d0e82c12632fed61427fe5e049cabb9bf604ebda02b6dcadb
-
SHA512
4b4baf2016ff0590f77f775f9806bd1ba3689e1bb81601a2f82b3b9ee335c68b80aad6c53dacdd81b65126da41619ac9192f8d358e99f77bdf26f472f3bd9aed
-
SSDEEP
98304:MK6GiPaCLOaRwhwygfBCvw0EOSWUvmZ4FPDSnCN5KxZIoDIiXsSUwV:MvCZlEpCvw0o7QSAZvD1XnUwV
-
Modifies security service
-
Executes dropped EXE
-
Possible privilege escalation attempt
-
Stops running service(s)
-
Loads dropped DLL
-
Modifies file permissions
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-