5317446a356222cb6394d3553f4f4299dd276c0a5e768c0408afa835a83ca3fb | Triage

Sharing

General

Target

RobloxAltGen.exe
Size

3.1MB
Sample

230331-xtqgyaea41
MD5

142ecc7159e452dc3b1b3f05c44a72d8
SHA1

f8336218417701755a27a439615e0809ae8ffbef
SHA256

5317446a356222cb6394d3553f4f4299dd276c0a5e768c0408afa835a83ca3fb
SHA512

33fcc8749783df07b6bbd48a79196b864a4de8762d2ac2574b80bde37bddb6e0e0ab1d786edd8bfad2ca236914dceee5553aef406067a503b46c1330bdce2647
SSDEEP

24576:mqjEnAxDBvPMCVwui5MMchBjh8a3jL6wZHqBm/3nHruzH7EFRIXRMxMmABlNGwB2:LEoDBnuOQm/be2AsLDzT9+u7C2y/J/

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  RobloxAltGen.exe
- Size
  
  3.1MB
- MD5
  
  142ecc7159e452dc3b1b3f05c44a72d8
- SHA1
  
  f8336218417701755a27a439615e0809ae8ffbef
- SHA256
  
  5317446a356222cb6394d3553f4f4299dd276c0a5e768c0408afa835a83ca3fb
- SHA512
  
  33fcc8749783df07b6bbd48a79196b864a4de8762d2ac2574b80bde37bddb6e0e0ab1d786edd8bfad2ca236914dceee5553aef406067a503b46c1330bdce2647
- SSDEEP
  
  24576:mqjEnAxDBvPMCVwui5MMchBjh8a3jL6wZHqBm/3nHruzH7EFRIXRMxMmABlNGwB2:LEoDBnuOQm/be2AsLDzT9+u7C2y/J/
Score

8^/10

discovery
- Downloads MZ/PE file
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1