Overview

overview

6

Static

static

URLScan

urlscan

1

https://ro.blox.com/...

windows7-x64

6

https://ro.blox.com/...

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://ro.blox.com/Ebh5?pid=share&is_retargeting=true&af_dp=roblox%3A%2F%2Fnavigation%2Fgame_details%3FgameId%3D3701795391&af_web_dp=https%3A%2F%2Fwww.roblox.com%2Fgames%2F10064361907

  • Sample

    221001-nx2jyagaa3

Score
6/10
googlephishing

Malware Config

Targets

    • Target

      https://ro.blox.com/Ebh5?pid=share&is_retargeting=true&af_dp=roblox%3A%2F%2Fnavigation%2Fgame_details%3FgameId%3D3701795391&af_web_dp=https%3A%2F%2Fwww.roblox.com%2Fgames%2F10064361907

    Score
    6/10
    googlephishing

    • Legitimate hosting services abused for malware hosting/C2

    • Detected potential entity reuse from brand google.

      phishinggoogle
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

1
T1102

Impact

Tasks