a6d5cb5d9bea3e2f83867de4aae16eca270e2e50c4a78ff341762d06f4125298

Analysis

max time kernel
990s
max time network
973s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
30/09/2023, 11:26

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

RobloxStudioLauncherBeta.exe
Size

4.8MB
MD5

fdb04b4dd596699ea1b87af827b24f57
SHA1

f2f8c1f94677f283018b155cb610bad2cf92d7f5
SHA256

a6d5cb5d9bea3e2f83867de4aae16eca270e2e50c4a78ff341762d06f4125298
SHA512

05daa8b99e2ad2f3e5c1f0d85786187c7115bee5cf28772c3daa73559b3294a9f9202f3ed1f17afc6c0fad88f3ecbd9a32567c4578dc856397ffb10e11c712a5
SSDEEP

98304:KBvq54FqGwzhex8xkmH6Vgk4ZoNvXo/Bkhor1QNYJbhh/XXy7:AY4FqlzS88gATSQyJ/i

Score

7^/10

discovery evasion spyware stealer trojan

Malware Config

Signatures

Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials In Files
T1552.001

Checks whether UAC is enabled 1 TTPs 2 IoCs

evasion trojan

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA	RobloxStudioLauncherBeta.exe
Key value queried	\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA	RobloxStudioBeta.exe

Drops desktop.ini file(s) 1 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Videos\Captures\desktop.ini	svchost.exe

Checks computer location settings 2 TTPs 1 IoCs

Looks up country code configured in the registry, likely geofence.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000\Control Panel\International\Geo\Nation	RobloxStudioLauncherBeta.exe

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\textures\ui\icon_intern-16.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\textures\AnimationEditor\button_search.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\textures\DevConsole\Search.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Shared\InsertableObjects\Light\Standard\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\llama\llama\Dictionary\removeKey.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Lua\Terrain\Dark\Large\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\textures\ui\PurchasePrompt\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\textures\ui\Vehicle\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Lua\Localization\Light\Large\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\scripts\CoreScripts\Modules\Logger.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\textures\ui\LuaApp\ExternalSite\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\BuiltInPlugins\Optimized_Embedded_Signature\AvatarCompatibilityPreviewer.rbxm	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\textures\TagEditor\VisibilityOnDarkTheme.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\roblox_lua-roact-policy-provider\lock.toml	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\TextChatService.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Shared\Navigation\Light\Large\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Shared\WidgetIcons\Dark\Large\DeviceSafeArea.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\textures\ui\VoiceChat\New\Unmuted0.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\GraphQL\GraphQL\__testUtils__\kitchenSinkSDL.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\Util-96003ad7-0.7.0\lock.toml	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\textures\ui\LuaApp\icons\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\scripts\CoreScripts\Modules\SelfView\publicApi.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\SocialTab\Roact.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\FriendsCarousel\SocialModalsCommon.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\VirtualEvents\Rodux.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\textures\AvatarImporter\img_light_R15.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Lua\DeveloperFramework\Dark\Large\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\shaders\shaders_d3d10.pack	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\ExperienceChat-b1cc8df5-8090c668\Promise.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\RoduxSquads\Cryo.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\SharedUtils\lock.toml	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Shared\InsertableObjects\Light\Standard\WorldModel.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Shared\Navigation\Light\Standard\CloseWidget.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\textures\AlignTool\Max.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\BuiltInPlugins\Optimized_Embedded_Signature\UIEditor.rbxm	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\ProfileQRCode\Dev\TestUtils.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qml\QtQuick\Controls.2\designer\images\label-icon16.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\RoactNavigation\RoactNavigation\views\useNavigation.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\LuauPolyfill-12e911c4-90b08185\LuauPolyfill\Object\is.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\AbuseReports\React.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\RoduxFriends-948a3386-02a3ea83\RoduxFriends\Selectors\getSortedByRankRecommendations.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\SocialLibraries\SocialLibraries\RoactPaginator\loadNextSymbol.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Lua\AssetManager\Dark\Standard\Menu.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\Class.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Shared\InsertableObjects\Light\Standard\ReplicatedFirst.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\scripts\CoreScripts\Modules\InGameMenu\Thunks\SendReport.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\ExperienceChat-3da36567-dd9751cb\ExperienceChat\installReducer\BubbleChat\init.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\JestDiff-edcba0e9-2.4.1\PrettyFormat.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\UGCValidation\UGCValidation\flags\getFFlagDebugUGCDisableRCCOwnershipCheck.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\textures\ui\VoiceChat\SpeakerLight\[email protected]	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\scripts\CoreScripts\Modules\PurchasePrompt\Utils\getHasLuobuFlag.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\NetworkingUsers-56568bb5-5eb39145\NetworkingUsers\buildApiSiteUrl.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\TestEZ\TestEZ\TestPlanner.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\UrlBuilder\UrlBuilder\encodeURIComponent.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\RoactUtils\Roact.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\ApolloClient\ApolloClient\optimism\init.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\LuauPolyfill-2fca3173-0.4.2\LuauPolyfill\init.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\LuauPolyfill-2fca3173-0.4.2\LuauPolyfill\Timers\makeIntervalImpl.lua	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\textures\TerrainTools\mtrl_water.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\content\textures\ui\Capture\CloseButton.png	RobloxStudioLauncherBeta.exe
File created	C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\ExtraContent\LuaPackages\Packages\_Index\NetworkingFriends\NetworkingFriends\networkRequests\createGetTencentFriendsSuggestion.lua	RobloxStudioLauncherBeta.exe

Executes dropped EXE 1 IoCs

pid	Process
4332	RobloxStudioBeta.exe

Loads dropped DLL 30 IoCs

pid	Process
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Checks processor information in registry 2 TTPs 2 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0	svchost.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	svchost.exe

Enumerates system info in registry 2 TTPs 5 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer	RobloxStudioBeta.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedgewebview2.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedgewebview2.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedgewebview2.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	RobloxStudioBeta.exe

Modifies Internet Explorer settings 1 TTPs 6 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio	RobloxStudioLauncherBeta.exe
Set value (int)	\REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio\WarnOnOpen = "0"	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000\SOFTWARE\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio	RobloxStudioLauncherBeta.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000\SOFTWARE\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio\WarnOnOpen = "0"	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	RobloxStudioLauncherBeta.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\RobloxStudioBeta.exe = "11001"	RobloxStudioLauncherBeta.exe

Modifies registry class 45 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.rbxlx\Roblox.Place	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Roblox.Place\DefaultIcon\ = "C:\\Program Files (x86)\\Roblox\\Versions\\version-4fe23c5c32374967\\RobloxStudioBeta.exe,0"	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio\DefaultIcon\ = "C:\\Program Files (x86)\\Roblox\\Versions\\version-4fe23c5c32374967\\RobloxStudioBeta.exe"	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio\shell	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.rbxl\ = "Roblox.Place"	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\Roblox.Place\shell\Open	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\roblox-studio\shell\open\command\ = "\"C:\\Program Files (x86)\\Roblox\\Versions\\version-4fe23c5c32374967\\RobloxStudioBeta.exe\" %1"	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio-auth\shell\open\command\ = "\"C:\\Program Files (x86)\\Roblox\\Versions\\version-4fe23c5c32374967\\RobloxStudioBeta.exe\" %1"	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.rbxl\Roblox.Place	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\Roblox.Place	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\roblox-studio\shell\open	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio-auth	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio-auth\shell	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio\ = "URL: Roblox Protocol"	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio\shell\open\command\ = "\"C:\\Program Files (x86)\\Roblox\\Versions\\version-4fe23c5c32374967\\RobloxStudioBeta.exe\" %1"	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.rbxlx\Roblox.Place\ShellNew	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio-auth\DefaultIcon\ = "C:\\Program Files (x86)\\Roblox\\Versions\\version-4fe23c5c32374967\\RobloxStudioBeta.exe"	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\Roblox.Place\DefaultIcon	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.rbxl\Roblox.Place\ShellNew	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Roblox.Place\shell\Open\ = "Open"	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\roblox-studio\DefaultIcon\ = "C:\\Program Files (x86)\\Roblox\\Versions\\version-4fe23c5c32374967\\RobloxStudioBeta.exe"	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio-auth\URL Protocol	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio-auth\DefaultIcon	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio-auth\shell\open	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio\DefaultIcon	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.rbxl	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Roblox.Place\ = "Roblox Place"	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\Roblox.Place\shell\Open\command	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\Roblox.Place\shell\Open\command\ = "\"C:\\Program Files (x86)\\Roblox\\Versions\\version-4fe23c5c32374967\\RobloxStudioLauncherBeta.exe\" -ide \"%1\""	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\roblox-studio\ = "URL: Roblox Protocol"	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\roblox-studio\URL Protocol	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\roblox-studio\shell\open\command	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\roblox-studio\shell	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.rbxlx	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio\shell\open	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio-auth\shell\open\command	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\roblox-studio	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio-auth\ = "URL: Roblox Protocol"	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1141987721-3945596982-3297311814-1000\{FCE3F8D7-5D73-4BDF-9686-19DFC940006D}	svchost.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\Roblox.Place\shell	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\roblox-studio\DefaultIcon	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio\URL Protocol	RobloxStudioLauncherBeta.exe
Key created	\REGISTRY\USER\S-1-5-21-1141987721-3945596982-3297311814-1000_Classes\roblox-studio\shell\open\command	RobloxStudioLauncherBeta.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.rbxlx\ = "Roblox.Place"	RobloxStudioLauncherBeta.exe

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
4332	RobloxStudioBeta.exe

Suspicious behavior: EnumeratesProcesses 20 IoCs

pid	Process
116	RobloxStudioLauncherBeta.exe
116	RobloxStudioLauncherBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
4332	RobloxStudioBeta.exe
5088	msedgewebview2.exe
5088	msedgewebview2.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
4332	RobloxStudioBeta.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs

pid	Process
3192	msedgewebview2.exe
3192	msedgewebview2.exe
3192	msedgewebview2.exe
3192	msedgewebview2.exe

Suspicious use of FindShellTrayWindow 6 IoCs

pid	Process
3192	msedgewebview2.exe
3192	msedgewebview2.exe
3192	msedgewebview2.exe
3192	msedgewebview2.exe
3192	msedgewebview2.exe
3192	msedgewebview2.exe

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
4332	RobloxStudioBeta.exe
1568	OpenWith.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 116 wrote to memory of 4736	116	RobloxStudioLauncherBeta.exe	83
PID 116 wrote to memory of 4736	116	RobloxStudioLauncherBeta.exe	83
PID 116 wrote to memory of 4736	116	RobloxStudioLauncherBeta.exe	83
PID 116 wrote to memory of 4332	116	RobloxStudioLauncherBeta.exe	96
PID 116 wrote to memory of 4332	116	RobloxStudioLauncherBeta.exe	96
PID 4332 wrote to memory of 3192	4332	RobloxStudioBeta.exe	105
PID 4332 wrote to memory of 3192	4332	RobloxStudioBeta.exe	105
PID 3192 wrote to memory of 4944	3192	msedgewebview2.exe	106
PID 3192 wrote to memory of 4944	3192	msedgewebview2.exe	106
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 3628	3192	msedgewebview2.exe	107
PID 3192 wrote to memory of 548	3192	msedgewebview2.exe	109
PID 3192 wrote to memory of 548	3192	msedgewebview2.exe	109
PID 3192 wrote to memory of 4976	3192	msedgewebview2.exe	108
PID 3192 wrote to memory of 4976	3192	msedgewebview2.exe	108

C:\Users\Admin\AppData\Local\Temp\RobloxStudioLauncherBeta.exe
"C:\Users\Admin\AppData\Local\Temp\RobloxStudioLauncherBeta.exe"
1⤵
- Checks whether UAC is enabled
- Checks computer location settings
- Drops file in Program Files directory
- Modifies Internet Explorer settings
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:116
- C:\Users\Admin\AppData\Local\Temp\RobloxStudioLauncherBeta.exe
  C:\Users\Admin\AppData\Local\Temp\RobloxStudioLauncherBeta.exe --crashpad --no-rate-limit --database=C:\Users\Admin\AppData\Local\Temp\crashpad_roblox --metrics-dir=C:\Users\Admin\AppData\Local\Temp\crashpad_roblox --url=https://upload.crashes.rbxinfra.com/post --annotation=RobloxChannel=production --annotation=RobloxGitHash=456b59212a710e2a700e22a46932ef4e612c9d60 --annotation=UploadAttachmentKiloByteLimit=100 --annotation=UploadPercentage=0 --annotation=format=minidump --annotation=token=a2440b0bfdada85f34d79b43839f2b49ea6bba474bd7d126e844bc119271a1c3 --initial-client-data=0x7a0,0x7a4,0x7a8,0x6b8,0x7b0,0xde2944,0xde2954,0xde2964
  2⤵
  PID:4736
- C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\RobloxStudioBeta.exe
  "C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\RobloxStudioBeta.exe" -startEvent www.roblox.com/robloxQTStudioStartedEvent -firstLaunch
  2⤵
  - Checks whether UAC is enabled
  - Executes dropped EXE
  - Loads dropped DLL
  - Enumerates system info in registry
  - Suspicious behavior: AddClipboardFormatListener
  - Suspicious behavior: EnumeratesProcesses
  - Suspicious behavior: GetForegroundWindowSpam
  - Suspicious use of SetWindowsHookEx
  - Suspicious use of WriteProcessMemory
  PID:4332
- - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
    "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --embedded-browser-webview=1 --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --noerrdialogs --embedded-browser-webview-dpi-awareness=2 --enable-features=MojoIpcz --mojo-named-platform-channel-pipe=4332.2060.7595245623042835658
    3⤵
    - Enumerates system info in registry
    - Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    - Suspicious use of FindShellTrayWindow
    - Suspicious use of WriteProcessMemory
    PID:3192
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=crashpad-handler --user-data-dir=C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=116.0.5845.180 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=116.0.1938.76 --initial-client-data=0x164,0x168,0x16c,0x160,0x170,0x7ff9f1db72c0,0x7ff9f1db72d0,0x7ff9f1db72e0
      4⤵
      PID:4944
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=gpu-process --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1688 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:2
      4⤵
      PID:3628
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=2312 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:8
      4⤵
      PID:4976
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=2296 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:3
      4⤵
      PID:548
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --mojo-platform-channel-handle=3384 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:1
      4⤵
      PID:2556
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --mojo-platform-channel-handle=3920 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:1
      4⤵
      PID:4140
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --mojo-platform-channel-handle=3392 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:1
      4⤵
      PID:3476
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=4644 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:8
      4⤵
      PID:1816
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=4780 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:8
      4⤵
      PID:872
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAABEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=4924 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:2
      4⤵
      Suspicious behavior: EnumeratesProcesses
      PID:5088
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=1156 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:8
      4⤵
      PID:3896
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=4244 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:8
      4⤵
      PID:3584
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=4888 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:8
      4⤵
      PID:1420
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=4912 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:8
      4⤵
      PID:620
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=4956 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:8
      4⤵
      PID:3748
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=4988 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:8
      4⤵
      PID:408
  - - C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe
      "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 596, 1, 5960685" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --mojo-platform-channel-handle=4924 --field-trial-handle=1692,i,2071305889982540913,9357969312556206660,262144 --enable-features=MojoIpcz /prefetch:1
      4⤵
      PID:4156

C:\Windows\System32\GameBarPresenceWriter.exe
"C:\Windows\System32\GameBarPresenceWriter.exe" -ServerName:Windows.Gaming.GameBar.Internal.PresenceWriterServer
1⤵
PID:2864

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Suspicious use of SetWindowsHookEx
PID:1568

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService
1⤵
- Drops desktop.ini file(s)
- Checks processor information in registry
- Modifies registry class
PID:2496

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\AppSettings.xml

Filesize
149B

MD5
48f58abeaac832f838efd2beb25f4c90

SHA1
7878e28b62e5d9bc9042a3e44094e39668f03384

SHA256
893a58e7946728c9dd5caac10e5bdc306a465e406c1f979ded52a13dafebce2d

SHA512
c5e3025b63eead12a0f8192ea41afd1216dd87b14a07d22ebafc6d3d899a06e80da947b3fcd1b3f2cf53b89b3de9967f89c415394d66c277556373b620dc827e

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Plugins\Qt5\imageformats\qgif.dll

Filesize
42KB

MD5
9600a70636894f6a934f2a7f14d6ae0a

SHA1
d0a4e0dc7e4c61bebbd91579bf15d260c1fc7230

SHA256
50d4baa1db453301c19c091995fc7010206d7c97e59b21431baa5ef46a980219

SHA512
6a80ca6c6b8ba3fcb1be5de6ea39bf6a75a6206266112bf23a81a249684b567e50babf257d011d0272d28d3d345c501d0f3e576f397a22abdea8b94abb3412bf

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Plugins\Qt5\imageformats\qjpeg.dll

Filesize
447KB

MD5
81b6df8cd8de9db1eeca252958ea9d1a

SHA1
e1ec20f7e3575d9595d38ca2ad8b5c521c7eccb4

SHA256
582054e0a0d49c5e5eb60e09200dc236ae69459fab9894f39a7521786c2be2be

SHA512
8cf35cc5b7a11aa7e7cdbc9dc626c5429b8f59079590092343b9b207839d34c46c1b9a2a7bbd4c5e136fae71396a698474c432428edcdc809825f003b6919231

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Plugins\Qt5\platforms\qwindows.dll

Filesize
1.4MB

MD5
e81f163cbeb67ec8414c2ab3b4119647

SHA1
065921e56683b78097e125da120420136258ec55

SHA256
117c9b304c2c8f6bc2fb466f9a8323591b9213d388252f142081a3e84d3b638e

SHA512
6700efcdae09a40e1907f56ee4fe2308422ce53ef76a13c434d1cd57a77d934e0bd583c8d96ced0fd250fd0ba727be6d7258692a6bbe19053b88fb48d188b13d

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Plugins\Qt5\styles\qwindowsvistastyle.dll

Filesize
144KB

MD5
04a9a47fa806c912a22af17577566709

SHA1
2caca306233ef324d63ef3fd04937793ff2af912

SHA256
792ddc958db80cfdb7132acf698c02367c02e27cb69ed04b7f4f542b0478c157

SHA512
47c39a2e91f0444bec87055aa1592bea6b0fe5fa1996b4c1f3d38a1928381d8a536522e5f86cea3fb7c655920ccee66c468a1d02af152750a41fbe46c9aad032

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll

Filesize
68KB

MD5
6bfeb8d80b3513da4843668d2cc62914

SHA1
609c2bc1300176c7c7ce38d48fb7a809acbef4a8

SHA256
13451803f01583e36c421bcaedb4e2d337204cc57dacd7f0494936d66c3b72d0

SHA512
e7ffee8f7486983a4cfb9b2e51c2b00bcfaeb08d7d382fe6728ba157ef226d8b82df6a7578b95344b574cd1ced6d8556a37279919baa2c7b07430b1242402a24

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qml\QtQuick.2\qtquick2plugin.dll

Filesize
28KB

MD5
191adebbd9417755b76590aa7f456959

SHA1
57554f9ad636abfd802a5771b8ba9937f533ae1b

SHA256
57b019a0e82871aa7ed333d8aa1795a345ea9666a0bfce34935d4e9538c44c44

SHA512
6f124f18c4b4ff4e45477861f8d281bf65c2cebd09c74d63cb2212abfc4d329e4d5a22c30d3b64fccfbdb6cfe00cb61f736225cd06b82d5b423f303b6b770eef

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qml\QtQuick\Controls\qtquickcontrolsplugin.dll

Filesize
335KB

MD5
01d8fa54e4df12f13abc769fb57ff980

SHA1
49e7592a9343fff7322e1ce91c83458bfd881f9b

SHA256
7a08879cb09b50a6b4cb440e91818cce9f4220ae63675b622c0713142f9e8b78

SHA512
b57d73a01cac8db18b0eca94efd83947bcf496ed766fe19a15bbc5fb58568bb0dda92d0567cff2cf21f8ff816ba36f76b6d2e85ea15d0cb46ff87090d7963fca

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qt5Core.dll

Filesize
5.8MB

MD5
f6c86aacc6126b0d2f442c6a88e57efe

SHA1
df1b891829c3005d045e3ba048292789d5e28fef

SHA256
096b9818d0c825487069deba7709b718e78a53053e22124b8e4c537deb72ace3

SHA512
8cb4d26c069074e2c5dd734e5d1cd085afd0742795024460d80b9b0b333dc01b5df7c5691c03ece34be20956daa63184eb8f028c5e1c27814124937ecb7c8ed5

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qt5Gui.dll

Filesize
6.5MB

MD5
3bce6b45e07a747167349865b4bf4ac3

SHA1
d24d4b87ed035f897009cf0b5b711e6485533d89

SHA256
946a04ae8bcb2c33fcb8c98ce7280dd4599974e85ffb86d9101e595c678ad6d2

SHA512
d7584ddd3c6cfc9bda1ddddd02b883aa974309770a478f138202f7540ae92b38cdc658149e4e8b4e76eb0280ab066e096558bd942367c20c018f0f716c09d1e4

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qt5Network.dll

Filesize
1.0MB

MD5
bb5ede48a003b21b63bb134435c4f5ff

SHA1
55d6cd8128d80c81a5fea49b9de4daa21d4a5ccc

SHA256
bed1870edbf831cd654f1e609cb2f785b5904f743a3a14c70a1d624f9a8e0172

SHA512
e5e62f3fbf1a9c82c13d0c192c1033d2c55d08ad3830ebbbe3b9252d0721651225ac39ab92d863ecd11bba62ac1c51f86422ffab9fcef6f5f20fdcf847a33afc

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qt5Qml.dll

Filesize
3.5MB

MD5
500782f2722eafbbe227ffd55d07b214

SHA1
00dd8939d3cbdfe99e38a4aa0359f4976275c120

SHA256
20f6d10df87698dfa16aea93e6cba95ac545ca47fbb684a3963d4f884418ddd7

SHA512
2e1de83f8cf52895b8f1efe681364f68e1ef8a0213f15705c4513d9fcaf238efec0df55363c614e9bca1e170c9914ddf5d8d2f0a629d0da41205dcdf586f1726

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qt5QmlModels.dll

Filesize
434KB

MD5
3dc45bf971e92b79c15b5484b64cd264

SHA1
d3d9518fa010a32f90692930910adbf6464c19f6

SHA256
4dbc827fbc94dda107d3e4004ca93b0fd97f66bf615da478944f0c1e0e0c422c

SHA512
3af883e5ed7e8fd0033e87d7e5fbf9c0da85ef6da559f37bbcbf10c027408d2ce6b7cfaf1210cd556ad8a12baebb00328ceb5d63ffd9752d7400d260a7eb16d4

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qt5QmlWorkerScript.dll

Filesize
59KB

MD5
720b9588b0e763c11bb323603263eb6b

SHA1
0e1f56397cbb6fd13e2f948a8a91804e3fe8893a

SHA256
40b0b41803632c0d92555b62aaeff1c346911ce569126082967585ae5a67d458

SHA512
8452a3a2ca4a214fe673f535c96ec4c15a35fb27f476fe01d7bca1b54478f125f7154c8bd378d9a1e555fc36baec97aeb47756c76580a2ba312d8427e1a57a61

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qt5Quick.dll

Filesize
4.0MB

MD5
c68cbcf308c4a8cf49faa41855da7c84

SHA1
27e96afd38b4b1a3ac9e8d718b63546697fc11ea

SHA256
e499af562435a8dc6bb04262e7380551e484c074d7bbff3f49114e977d3ca867

SHA512
e06bc862b8b3ecc7baf6ff8c48597a8424c92925c05abe2b8a24dabda0b8eb751cc1432eb49d6fa032244c4a1dc75e8310fc86be845dbbbef8aecf49608ce863

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qt5Widgets.dll

Filesize
5.3MB

MD5
5309de309fb00a4be24bb465f0053455

SHA1
a14ef29356dac72d882f663a426f16ab29bc3529

SHA256
24b14e67f6ae8a8b0191d68a3576300bd0ecc240ec9417e94f0f04dcc15a12f2

SHA512
0cebf0e1560f2ef8b140bfd4fba2b3d7a562923f1b45c84eff41dd02b5ce04a9402c937cb4708d4623ab02a8991bbe6a31acc3cbd17fe2079130313f33daa1e7

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\Qt5Xml.dll

Filesize
215KB

MD5
a24011ba1cba9e517da2d89d530329cd

SHA1
867f44a65128db05ec1c2842a52b2752ba22346e

SHA256
7315e183382b81e65be9e3efb2ae151f6c95fad914a0dbfbf0400dfab868af48

SHA512
76d7115d7b5f57a609cae61e768b28cc873f30a4aea46a2b385e9c8be1e5bba7c73ce84731708fe12f28d691b06ec6dbb8579f5eb9eca92ecf83d94e97b98620

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\QtitanBase.dll

Filesize
1.1MB

MD5
1063f7794f25374f19f85dfa224e664d

SHA1
463a942692382afcb7373b805866ac1f3eaded35

SHA256
0df3e1d558e34aba2dc3f3f7c21225ab40d454c5f2ae1c05c7dc64fb755d9d59

SHA512
d9faf14bccc559570aca8f46ab02261cc71e42b88a0eec8209463fdf5af472f9bba794b1e801abf9a0f842c12f850737c26feeef2a711c22f43f95ad9e2efe04

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\QtitanDocking.dll

Filesize
564KB

MD5
a190fdbf2b7acb058847b4d125794ae4

SHA1
3cb29156473671dcff9d53b81f0c539390a1e23e

SHA256
40a6dce4cdf29760c9ef39376b67c4e5b5d0592e41f5b7710e17635a8e2f92d9

SHA512
0741e20665f43a554e83cfaa0a5df65833c3bf6b83953cebb1910ab68a6d008436072521ecd9f968f9d3b9b982beebe8ccccc6a86a098b4d315f9a655c79dd0a

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\QtitanRibbon.dll

Filesize
3.1MB

MD5
94e3b7c2fe690468bdeb5325c558c369

SHA1
66ab981abcd72d107dd8f1e19797d026cebbea8c

SHA256
a616b8fac3b6c67aea70cea87f786dbd9fd092cf59ebdcd0a7bb47f25a06c268

SHA512
27194eb0487a06c1d0721f2f48d50605d8b60572c08ef5477919cf4d7394f5359628720ece258131b2e8b8bc0f7bf9c0cfecaa2574807d5f9de63e267e2f5c1b

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\RobloxStudioBeta.exe

Filesize
118.2MB

MD5
c2314cd495ddcbd94e0a8785f363a669

SHA1
03e77133261a92f3bf302b62019f1b11e5d5c6d8

SHA256
65fcc8a1308f786390efce942faef7a286e45519c23424ed77c094a6fcd22556

SHA512
1cc264d9f65fbea5e483941009c205f9cff042e9e9f92b6671faea0a3405cd4848691394419d438021f059f0fc7d90ec147ea76ea9cfea105a4e5b0202b9d6a0

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\RobloxStudioInstaller.exe

Filesize
4.4MB

MD5
8e2a3684ec44349d9491d209a4497d52

SHA1
32ca2a45dd4bbd2c6d8c0faaa8d47f03208ae0ea

SHA256
a2eabdd10806146c0a4765cf16f09b3695df38328b8eac9b6124e317423878c9

SHA512
98d61bcc505d96f199dd6a6b2bcd29d917aba6cf044de32c36a4dfc739e8cc78c547ff8333cfa1942e3b13d846c3fe52880c6f6440070096ecc904a1e06fdf78

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\WebView2Loader.dll

Filesize
154KB

MD5
577f05cd683ed0577f6c970ea57129e0

SHA1
aedf54a8976f0f8ff5588447c344595e3c468925

SHA256
7127f20daa0a0a74e120ab7423dd1b30c45908f8ee929f0c6cd2312b41c5bddf

SHA512
2d1aea243938a6a1289cf4efcd541f28ab370a85ef05ed27b7b6d81ce43cea671e06a0959994807923b1dfec3b382ee95bd6f9489b74bba59239601756082047

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\d3dcompiler_47.dll

Filesize
4.7MB

MD5
c4974c924b605bd322c4872d72de90d1

SHA1
20df9433eab24d3291696046646f493794b77cba

SHA256
71d766b4742ca9f7422bb2efc3dc03f2cee509a5a43d241e748cda7aaac24bf4

SHA512
3889648dbb4608ece9c68f1cd5b1601da5b795eade7910764dd4769090cdb209a39acf3986e6e7190745f3bc6b1477a52dfaccb96a7e799eafc0825e2c44a846

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\libEGL.dll

Filesize
28KB

MD5
e457518a50afb372c230cf6c27112787

SHA1
d7b3371c7ed397f96f3429071411f133e72f5cd5

SHA256
ac149c1018040215f56b65a43c352a9b5b8f35e2f759f865b84165f47718b0b4

SHA512
ca47884dd3c5bde9557d3d7d0991712c3a0b9b3086bd9af4fd41dc971d7541ffe53d40d14a0a53a46b4cec2de892c4df0b0bf11a7c0db91201ffc68b567e72ee

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\libGLESv2.dll

Filesize
3.2MB

MD5
0b780f2fe3a945efc086a3874d8321cf

SHA1
f99d357b2749d6d638ef643c57aecf934af7adca

SHA256
fd5144e95bd4185cc0605a123643a092c357f4493dfa44201220d27846d03626

SHA512
aa77af09138621905cf0dc48bb371eac3fa35322451136596517650a6baca3093e301acd3886351421f08774f51cab575c88af4c0480de0f868ae6c0c198888d

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\libfbxsdk.dll

Filesize
9.7MB

MD5
51d82c0e8ad65126413ed39246b5cf46

SHA1
f73c0b2248ee11f8fde172e04c64b40452051521

SHA256
1ca21010e6872b44c0627dcc244b9b26c5879a97617e7b7c0b304939eade1f35

SHA512
c60362c4a67bd11ee330d36ecb1a58d7619989072b48b652f9411884797852fca4805ea1aab77546b1d7fc3c158beb30dc6aef0f7dbfb99322affdc8dfec014f

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\msvcp140.dll

Filesize
552KB

MD5
cd0c37f1875b704f8eb08e397381ac16

SHA1
249d33c43e105a1c36ec6a24e5ef8dbc5f56b31b

SHA256
d86ac158123a245b927592c80cc020fea29c8c4addc144466c4625a00ca9c77a

SHA512
d60c56716399b417e1d9d7d739af13674c8572974f220a44e5e4e9ab0b0a23b8937bd0929eee9f03f20b7f74db008f70f9559a7eb66948b3afab5b96bdd1a6d5

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\msvcp140.dll

Filesize
552KB

MD5
cd0c37f1875b704f8eb08e397381ac16

SHA1
249d33c43e105a1c36ec6a24e5ef8dbc5f56b31b

SHA256
d86ac158123a245b927592c80cc020fea29c8c4addc144466c4625a00ca9c77a

SHA512
d60c56716399b417e1d9d7d739af13674c8572974f220a44e5e4e9ab0b0a23b8937bd0929eee9f03f20b7f74db008f70f9559a7eb66948b3afab5b96bdd1a6d5

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\msvcp140_1.dll

Filesize
23KB

MD5
8ad9c7cffbb2413f4d5ff9f3aaa1a69b

SHA1
2b5116e49ac5913ef8a512a7299e9a459dab4778

SHA256
18aef42187072c35b537be80e3b2da7ce4919b2c9574add19409d98e3026d916

SHA512
d489b82ce896a06cd37905bc5b2fe9620f4e7feb2a9b77fc93f94e0270b67e7a2f3879afba6b546ad44f2ee96f050e83bfc93830010a707126667857be79028a

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\sgCore.dll

Filesize
1013KB

MD5
6241dd483f9d4d70dde26ad325424c50

SHA1
2520679266f41fe3968faac60e074a76bd449468

SHA256
f388fc3595a7ec31a5a214611892b05e19c0da7644b3c4473bdc46f2862c2471

SHA512
a315d9ee570ad0b190c565c2e6b37c5af1ea1c2cf3eecc448f0555ea96c7841f7bc3839131f1906d6220d238130783fecdf88e672f8dd5c3852f4dfef7d64927

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\vcruntime140.dll

Filesize
94KB

MD5
11d9ac94e8cb17bd23dea89f8e757f18

SHA1
d4fb80a512486821ad320c4fd67abcae63005158

SHA256
e1d6f78a72836ea120bd27a33ae89cbdc3f3ca7d9d0231aaa3aac91996d2fa4e

SHA512
aa6afd6bea27f554e3646152d8c4f96f7bcaaa4933f8b7c04346e410f93f23cfa6d29362fd5d51ccbb8b6223e094cd89e351f072ad0517553703f5bf9de28778

Download Submit
C:\Program Files (x86)\Roblox\Versions\version-4fe23c5c32374967\vcruntime140_1.dll

Filesize
36KB

MD5
7667b0883de4667ec87c3b75bed84d84

SHA1
e6f6df83e813ed8252614a46a5892c4856df1f58

SHA256
04e7ccbdcad7cbaf0ed28692fb08eab832c38aad9071749037ee7a58f45e9d7d

SHA512
968cbaafe416a9e398c5bfd8c5825fa813462ae207d17072c035f916742517edc42349a72ab6795199d34ccece259d5f2f63587cfaeb0026c0667632b05c5c74

Download Submit
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping3192_1150218816\manifest.json

Filesize
43B

MD5
55cf847309615667a4165f3796268958

SHA1
097d7d123cb0658c6de187e42c653ad7d5bbf527

SHA256
54f5c87c918f69861d93ed21544aac7d38645d10a890fc5b903730eb16d9a877

SHA512
53c71b860711561015c09c5000804f3713651ba2db57ccf434aebee07c56e5a162bdf317ce8de55926e34899812b42c994c3ce50870487bfa1803033db9452b7

Download Submit
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping3192_1230011788\manifest.json

Filesize
132B

MD5
e7d5038d362bb1256b6164d60df4ccff

SHA1
9a181dc4a4ef15da84ddc28e784d20fad2b6e928

SHA256
65a73e5184c572f25bec7a62b11f906159876d2a2fa023e868a3bca213acfa03

SHA512
244702efbd2ce3de829abca34967b4ecbf2bcf4ce3a26b512b63366c763cdf2a6edfcdb325a95d008aeed908c98fb13009a19b9b0e914b13f0c5ca180c8af84b

Download Submit
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping3192_1692274515\hyph-hi.hyb

Filesize
687B

MD5
0807cf29fc4c5d7d87c1689eb2e0baaa

SHA1
d0914fb069469d47a36d339ca70164253fccf022

SHA256
f4df224d459fd111698dd5a13613c5bbf0ed11f04278d60230d028010eac0c42

SHA512
5324fd47c94f5804bfa1aa6df952949915896a3fc77dccaed0eeffeafe995ce087faef035aecea6b4c864a16ad32de00055f55260af974f2c41afff14dce00f3

Download Submit
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping3192_1692274515\hyph-nb.hyb

Filesize
141KB

MD5
677edd1a17d50f0bd11783f58725d0e7

SHA1
98fedc5862c78f3b03daed1ff9efbe5e31c205ee

SHA256
c2771fbb1bfff7db5e267dc7a4505a9675c6b98cfe7a8f7ae5686d7a5a2b3dd0

SHA512
c368f6687fa8a2ef110fcb2b65df13f6a67feac7106014bd9ea9315f16e4d7f5cbc8b4a67ba2169c6909d49642d88ae2a0a9cd3f1eb889af326f29b379cfd3ff

Download Submit
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping3192_1692274515\manifest.json

Filesize
179B

MD5
273755bb7d5cc315c91f47cab6d88db9

SHA1
c933c95cc07b91294c65016d76b5fa0fa25b323b

SHA256
0e22719a850c49b3fba3f23f69c8ff785ce3dee233030ed1ad6e6563c75a9902

SHA512
0e375846a5b10cc29b7846b20a5a9193ea55ff802f668336519ff275fb3d179d8d6654fe1d410764992b85a309a3e001cede2f4acdec697957eb71bdeb234bd8

Download Submit
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping3192_1939693369\manifest.json

Filesize
101B

MD5
76607dbf359780c523248730e2051eb3

SHA1
4e72e8cd50a4f9d870387a59a94f06ebce3f13a1

SHA256
fdccbbc10df5635b38e6efaec729ee202e7718ebdde4e5b7507c02e6988029b5

SHA512
ecdbd5cc1216757307deec0185817027b2d0eeff1d0e5692d26e44ac3104e41d7a9764cf02a4bafb60a96d3724046590d4884b5d02a7dd015d2622e13e9d9a35

Download Submit
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping3192_1952143085\manifest.json

Filesize
76B

MD5
ba25fcf816a017558d3434583e9746b8

SHA1
be05c87f7adf6b21273a4e94b3592618b6a4a624

SHA256
0d664bc422a696452111b9a48e7da9043c03786c8d5401282cff9d77bcc34b11

SHA512
3763bd77675221e323faa5502023dc677c08911a673db038e4108a2d4d71b1a6c0727a65128898bb5dfab275e399f4b7ed19ca2194a8a286e8f9171b3536546f

Download Submit
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping3192_252700017\manifest.json

Filesize
134B

MD5
58d3ca1189df439d0538a75912496bcf

SHA1
99af5b6a006a6929cc08744d1b54e3623fec2f36

SHA256
a946db31a6a985bdb64ea9f403294b479571ca3c22215742bdc26ea1cf123437

SHA512
afd7f140e89472d4827156ec1c48da488b0d06daaa737351c7bec6bc12edfc4443460c4ac169287350934ca66fb2f883347ed8084c62caf9f883a736243194a2

Download Submit
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping3192_576340006\manifest.json

Filesize
113B

MD5
b6911958067e8d96526537faed1bb9ef

SHA1
a47b5be4fe5bc13948f891d8f92917e3a11ebb6e

SHA256
341b28d49c6b736574539180dd6de17c20831995fe29e7bc986449fbc5caa648

SHA512
62802f6f6481acb8b99a21631365c50a58eaf8ffdf7d9287d492a7b815c837d6a6377342e24350805fb8a01b7e67816c333ec98dcd16854894aeb7271ea39062

Download Submit
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping3192_657045793\manifest.json

Filesize
116B

MD5
f595e4853bba79f118ba178c44efeded

SHA1
57d82930c364cdca6a979048460e7c43cdb0d3ec

SHA256
313d3f62cdd48674e73381d1901d4d190794599998b4a57456321d41d449435e

SHA512
823c205cef3209bb9af1224a7978bd79531f69db297a900363e4a851221e38bb2864993b0d56ad68afdc49551809f8e3c710f51a4d5712553ea382002eaf1aa5

Download Submit
C:\ProgramData\Roblox\Downloads\roblox-studio\fdb04b4dd596699ea1b87af827b24f57

Filesize
4.8MB

MD5
fdb04b4dd596699ea1b87af827b24f57

SHA1
f2f8c1f94677f283018b155cb610bad2cf92d7f5

SHA256
a6d5cb5d9bea3e2f83867de4aae16eca270e2e50c4a78ff341762d06f4125298

SHA512
05daa8b99e2ad2f3e5c1f0d85786187c7115bee5cf28772c3daa73559b3294a9f9202f3ed1f17afc6c0fad88f3ecbd9a32567c4578dc856397ffb10e11c712a5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B398B80134F72209547439DB21AB308D_A4CF52CCA82D7458083F7280801A3A04

Filesize
471B

MD5
e967ca7b67e20488aa2cacc1703a84ab

SHA1
568a0a5fd05a705f5b7724d5b0e7a82f29fad467

SHA256
76920dbf9ceab60f246494c2216d88145d5fca5bd8c62feedf5a7e22b2db825b

SHA512
a735841bbdf009a4d8159fbf582351a66c68854277eadbdd5978817c1a7211ffb2251444b73dd45b7cf3ec8fa0d034eb365295309619c0c3ed85e3e89e1390b7

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_A4CF52CCA82D7458083F7280801A3A04

Filesize
400B

MD5
6b02d1a1012a99d14a1972dd53631e26

SHA1
efffe2daa4d9e880d21b98f7d8e0c7889f78a33c

SHA256
d526aeb3024376be34bb94007c5417ac5e08d0bb2c46fedb3f441986da580cbe

SHA512
0c6a68d9c8442c4ef91dcb5ae6a4e440c938e2ee994f45c7739c7edb4fff5d4fedbf7bba243d6dd47ed525dec3091bcc316bd2a011dfe64696abdccd92eb5c78

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\FXXN8G02\PCStudioBootstrapper[1].json

Filesize
3KB

MD5
725d336c93c652caeb689299e89a4e39

SHA1
0154d28c174a3ce2a3ac181ce2c464995e553ce9

SHA256
e24cf492c2bb4d402c096f1381ac0b98b6c53a03eeb45a1504629cd20e747c6c

SHA512
61e9d583f3b969c0bd85f828bac8f1cc9e4669ec8e6e43fb54d22c6ef356dd7f53baa52babfc476955b313b195bd2dc3de33fc3dc0f597d05e7a24d663fa024d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\YF4PBZEL\BatchIncrement[1].json

Filesize
163B

MD5
bedbf7d7d69748886e9b48f45c75fbbe

SHA1
aa0789d89bfbd44ca1bffe83851af95b6afb012c

SHA256
b4a55cfd050f4a62b1c4831ca0ab6ffadde1fe1c3f583917eade12f8c6726f61

SHA512
7dde268af9a2c678be8ec818ea4f12619ecc010cba39b4998d833602b42de505d36371393f33709c2eca788bc8c93634a4fd6bec29452098dbb2317f4c8847f6

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\AutoLaunchProtocolsComponent\1.0.0.8\protocols.json

Filesize
3KB

MD5
6bbb18bb210b0af189f5d76a65f7ad80

SHA1
87b804075e78af64293611a637504273fadfe718

SHA256
01594d510a1bbc016897ec89402553eca423dfdc8b82bafbc5653bf0c976f57c

SHA512
4788edcfa3911c3bb2be8fc447166c330e8ac389f74e8c44e13238ead2fa45c8538aee325bd0d1cc40d91ad47dea1aa94a92148a62983144fdecff2130ee120d

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\CertificateRevocation\6498.2023.8.1\crl-set

Filesize
21KB

MD5
d246e8dc614619ad838c649e09969503

SHA1
70b7cf937136e17d8cf325b7212f58cba5975b53

SHA256
9dd9fba7c78050b841643e8d12e58ba9cca9084c98039f1ebff13245655652e1

SHA512
736933316ee05520e7839db46da466ef94e5624ba61b414452b818b47d18dcd80d3404b750269da04912dde8f23118f6dfc9752c7bdf1afc5e07016d9c055fdb

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Crashpad\settings.dat

Filesize
280B

MD5
9fdf9faee80ab042a7811bf8ba3d575a

SHA1
e4ad7cbff282d4cd7709ae721f30c0a31fcdc9a2

SHA256
4cd7c537597ee1c686e76b51d31dbe80bd0abab631e401f7122fd6b8c931d9ab

SHA512
5c550d3b777c02a869f765e5f5c11286483778983c0257972afc0fdb269fd896a0e45eafeb7d46bf5956c4389e8abdfe59f15f545033b68b0300e2272daaddd1

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Crashpad\settings.dat

Filesize
280B

MD5
9fdf9faee80ab042a7811bf8ba3d575a

SHA1
e4ad7cbff282d4cd7709ae721f30c0a31fcdc9a2

SHA256
4cd7c537597ee1c686e76b51d31dbe80bd0abab631e401f7122fd6b8c931d9ab

SHA512
5c550d3b777c02a869f765e5f5c11286483778983c0257972afc0fdb269fd896a0e45eafeb7d46bf5956c4389e8abdfe59f15f545033b68b0300e2272daaddd1

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Crashpad\settings.dat

Filesize
280B

MD5
286b9ca41518755f3813d4c238e1db10

SHA1
7e72a69a416ad01bae1cf80fe1381719b1d9e5e2

SHA256
d47ed443155c47022f964a415b1ed6a2d592f474c786207ea8bf302dab8f3476

SHA512
a879b462e6a451f13bea606211d8d028c8a05ba4b9cb3c22a92b0e5574bfd0d4cab3f084a74b5a88016c72e0d4b5ae34719425d222e5a851e805b62d8f5794a2

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Crashpad\throttle_store.dat

Filesize
20B

MD5
9e4e94633b73f4a7680240a0ffd6cd2c

SHA1
e68e02453ce22736169a56fdb59043d33668368f

SHA256
41c91a9c93d76295746a149dce7ebb3b9ee2cb551d84365fff108e59a61cc304

SHA512
193011a756b2368956c71a9a3ae8bc9537d99f52218f124b2e64545eeb5227861d372639052b74d0dd956cb33ca72a9107e069f1ef332b9645044849d14af337

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
e2443d1d6cc03b92124d7cacf73686b5

SHA1
89f17636599246f8701f1833723190bbdf684f99

SHA256
32ffc7434510d33e75b2bcbd29d4a772f77aa36f78662ec3c4c52dfb60c16ed9

SHA512
18f343ac172946cb8efc02f7728bf878f387b1e239420dd85027df9b37403391ee88e0cad2aea97cc9ba19710b3590958bb90185494994cfd908a22a645152a7

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Code Cache\js\index-dir\the-real-index~RFe598563.TMP

Filesize
48B

MD5
3b580605587b0d1dfc5ffe7e63984df2

SHA1
123ea0807cd0e64f8b67af5eb52ee25663334d85

SHA256
f9ef03b8ed8c4de5d03c76feb30c7ba3a95032ff74a6e33224eb7d8f771d9c9b

SHA512
5e990fb2dadd234ba92b287569404cc8e79f8b577311f2751b22eccb3cfe4795921c5010f140db9269ce94134a924a5cf7e39f910c60fe55c9e59d7498b09985

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Extension Rules\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Extension Scripts\MANIFEST-000001

Filesize
41B

MD5
5af87dfd673ba2115e2fcf5cfdb727ab

SHA1
d5b5bbf396dc291274584ef71f444f420b6056f1

SHA256
f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4

SHA512
de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\Network Persistent State

Filesize
2KB

MD5
283050fc4ab6e6c3991d778ad52c4f7a

SHA1
b3b0c4c682e6d7565e943a15a2ac9ead92c337a8

SHA256
6dc397eb51aa1c10fc7995e0951aca769c4e09e3cb97548587d38c7504d11052

SHA512
2705386e91b0a3b65235b39309bf182aaa330b6885fba2bb6fe42d89959503f3f6267810304dc8f78d201d70620eb277fe142ade9c6d414ba784bdc576fe0fcf

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\Network Persistent State

Filesize
1KB

MD5
3598d39d21fc38f52abbb160ebb5cab8

SHA1
175d8238b44df0b1ae0dcdb567a4b0e5c83cd1ab

SHA256
a481f2a6fe84cbab65952abec33644780e5552520b74d47f695b41523b8fe27c

SHA512
df1646a8c22f69036b8197e89c530d3e68f0a8dc941735fb80cc204cd7f6314dd2120fd36bda0e3fcae73decd81efeb2049631182d25caf1e59cfe89a5ffeee6

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\Network Persistent State

Filesize
1KB

MD5
80dd5d38caa05e42025ca798588e3810

SHA1
b18943684848f1fa6ae5659170f717d47c6fdfac

SHA256
5182cc9dd6b0479baf2b2e8388408e9345870922c50a04a8ddb53498041a2950

SHA512
79c691e4854c2155b5f35113f25f4c6857d8768883047cff1b0f9531399f67aed3d5471dc35c53c64163663291f6162e0c17397dcd4dbb8f8c8029dd7eb45ac5

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\Network Persistent State~RFe5a3d58.TMP

Filesize
59B

MD5
2800881c775077e1c4b6e06bf4676de4

SHA1
2873631068c8b3b9495638c865915be822442c8b

SHA256
226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974

SHA512
e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity

Filesize
1KB

MD5
b78a8ea61b583a8c9a9cf7dfdd8a2155

SHA1
3be783c8df1ae1c4a84dda4959a8500c6d8a2af2

SHA256
274560d4b09d4fa8e8e6d21ea71ddf10c6fff59a594ca2609c0657cd22d29c61

SHA512
483d28bf6aa1502e538cfbf0d8c0131079ce5348c50d7b27e380c22857d6fa43b3972b6cb55f696c6448941d311e6d8b45ddf1b53a3d57fd687101ae036fbfaa

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity

Filesize
1KB

MD5
86d3b76fbc3caac8253f8196d37f3be5

SHA1
4e9f948d6ef3f16e7d699da3b19fb51b36e4961a

SHA256
7777ff4291cb1a0d145786f1f36b166d7314ea4fc3e3b5726fb8f44d3ab376dd

SHA512
78cb8de24aefeb6e2d8f4a114fd37309e116b21a22f42900986365c5b12f444d0ff74a6b057d802ac327c7723026928cc85e699c6f69e4e9faba2b37dc68912a

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity

Filesize
1KB

MD5
3e0b82020b8cdf6088052c50b036fbfe

SHA1
65f7f9b3953fd43036460c1e17f6389b7fcac05d

SHA256
d7958f020629985141e897d99fc178a69c56f2f0f773345f04ecaeaaf83db073

SHA512
d096b7c06f5302816a9211a20b7e1ba350fadee8c2692262b8af245894007e479980d755b24f2de208aaf6bfe5d4efc1c8afe684f3b71c2a7ed6af43e532e5c2

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity

Filesize
1KB

MD5
1c526c9eeba0008c4a88f2c4dbac1d95

SHA1
504d5c0dc78344ae67f8bc2c91ee4f1cfc614213

SHA256
cb63d08d3a4695cc4b75ed4d278214b6cc5a42f47ac78cb5abb1938954db78d4

SHA512
4462b40bfa501fb8abcae3f1f60151d28f1f33beda5bc41282b848ae126e5ad09781f23996ac972aa929898760dab45fb0a7ea25b3039222e68fc96535351b96

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity~RFe59814c.TMP

Filesize
1KB

MD5
935ad8334f76cf51406ccdb36f54cd75

SHA1
04cecd7e8a54dfe9f8744268ab6d68af35d6ebdb

SHA256
ca95ba8ff825d28b90d4f1c4b532956de6d8298b1078c2b0ff142f8ba39a25ec

SHA512
612b98a61e3a73c9eceb8bfc64d70aaa0fde50cae077a6b6e70f808c772fe1a148eeb14eef850222665e71d1efc6c605a85d87e68f4f2f82fe0c05053a5ec57e

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Preferences

Filesize
6KB

MD5
dbef5f2fc2010a3b7af7e9cc9b4e0ced

SHA1
5e7536183caccbe737e72707ce97c3a3fa8e5be0

SHA256
bc44188793ff75eea381dd21dcaad22d818bdd685457ed629adc0ce9be1ee718

SHA512
35774c5aec94edfc969984a44283d4ec34911c1e82d9d2061da1bebc06a18a03d6046c812e685e2aaaa9f41252932c96007f09d51e4c092e75db63a857e123dd

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\f3ef8fc4-b7cc-4cf0-a1c1-3769ff15ecde.tmp

Filesize
6KB

MD5
0b5090e78ee681e54f14ffc2d71f9e8b

SHA1
05db172d224dcf02c61a4348f0c2f62ef4aebb98

SHA256
9c36e8dc3ebd0a1f92b81c9862ab6b61d1d67b791b15af36d72d13a0f6d718a6

SHA512
79ec1388fcb7f110544dd583af6394e18f68f4f7431f1c16bf90a43f6ba95812a4c43265df16996721a0a3b19ebf806c4ffbfa4379b8ab6d4d42b17a52e65986

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\f93da649-51a3-4a35-b941-c9bd0f661b6e.tmp

Filesize
6KB

MD5
07fc43f363d6b85be446aaa145c154c8

SHA1
4c37b2735925a30d13deb5e98b33ea4b3559dd60

SHA256
50e508ba4b935eee1110de550420fc86579cd6cc63228d9d46fe70bfccc43d59

SHA512
99eb19deb49acec40d04b79400226e7542e8d2228e9885b2c6e51276a0bd7344efdd7ccd402e69df8ac412a3deca8bea3f84563d65086ec882ded68648800871

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\GraphiteDawnCache\data_0

Filesize
8KB

MD5
cf89d16bb9107c631daabf0c0ee58efb

SHA1
3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b

SHA256
d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e

SHA512
8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\GraphiteDawnCache\data_1

Filesize
264KB

MD5
d0d388f3865d0523e451d6ba0be34cc4

SHA1
8571c6a52aacc2747c048e3419e5657b74612995

SHA256
902f30c1fb0597d0734bc34b979ec5d131f8f39a4b71b338083821216ec8d61b

SHA512
376011d00de659eb6082a74e862cfac97a9bb508e0b740761505142e2d24ec1c30aa61efbc1c0dd08ff0f34734444de7f77dd90a6ca42b48a4c7fad5f0bddd17

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\GraphiteDawnCache\data_2

Filesize
8KB

MD5
0962291d6d367570bee5454721c17e11

SHA1
59d10a893ef321a706a9255176761366115bedcb

SHA256
ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7

SHA512
f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\GraphiteDawnCache\data_3

Filesize
8KB

MD5
41876349cb12d6db992f1309f22df3f0

SHA1
5cf26b3420fc0302cd0a71e8d029739b8765be27

SHA256
e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c

SHA512
e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

Filesize
1KB

MD5
f4b5e4151c86a29a0b189e02bf379695

SHA1
a7f6cb403b73dbfef12737e53d4218d3b6678510

SHA256
b1ff6c84c91c3527881deec5594df51efedf5690e49fc27c07746b1a16250976

SHA512
2cdc421bf096ab0090f55b015843521015bf23779ea31d5bcd6bbf531d1a1a61954126a1378e58c3766354f73082489be514080e07875fabdc50ab6b9c5d0ec3

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

Filesize
19KB

MD5
a4ff505074389158509aca415fb92c6e

SHA1
47978f5c4152eb6156275e380a0db37f147f1368

SHA256
73308fd99f54f6252055fea4ef91e73a9725a25db0e4e911d10b2fd0dbbf89a8

SHA512
65a7cca2ddc46ccc7178c31e969289433f09b01567336c38d377e342ff65754186f85fb8e1e59a7e27dff8f817d2b17d71a2aa22adae0ff3777d326683ab6c9b

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State~RFe592570.TMP

Filesize
950B

MD5
04b27399fcc9b9d541f6159cd503ab20

SHA1
339f2fad8a2a812b8872f8d3385c1689c00bcb60

SHA256
369fb20d690933b1bebf1418e7b42c62d4c92725793fc81e1c89de76a43d9efd

SHA512
334b2488fffb45b60299908755f636fd671f0854d6ac4707c17094ed23c86248125142797f71dab9d44a947aecf780439e4b606fee748a1e47e8e9207737242d

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\PKIMetadata\7.0.0.0\crs.pb

Filesize
268KB

MD5
46af6f0f7d2da1cf0f5de6f5198b11c1

SHA1
3b295940d9c3d8132049464a4cbd1f67975b2cdd

SHA256
d2d85a01cd7dd7f8b59a08cbe6462223784c525c0c63c7e54b324d627bfe7174

SHA512
d445dec865de916f4b3a5f256943d17ce6e10cede0fb0cfc42d4d755c790a9c542f1ecb4a089473e3891b9a5beb5767c2a8f3e70764a040fb63335ac1c0cee02

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Subresource Filter\Unindexed Rules\10.34.0.50\Filtering Rules

Filesize
1.8MB

MD5
a97ea939d1b6d363d1a41c4ab55b9ecb

SHA1
3669e6477eddf2521e874269769b69b042620332

SHA256
97115a369f33b66a7ffcfb3d67c935c1e7a24fc723bb8380ad01971c447cfa9f

SHA512
399cb37e5790effcd4d62b9b09f706c4fb19eb2ab220f1089698f1e1c6f1efdd2f55d9f4c6d58ddbcc64d7a7cf689ab0dbbfae52ce96d5baa53c43775e018279

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Subresource Filter\Unindexed Rules\10.34.0.50\LICENSE

Filesize
24KB

MD5
aad9405766b20014ab3beb08b99536de

SHA1
486a379bdfeecdc99ed3f4617f35ae65babe9d47

SHA256
ed0f972d56566a96fb2f128a7b58091dfbf32dc365b975bc9318c9701677f44d

SHA512
bd9bf257306fdaff3f1e3e1fccb1f0d6a3181d436035124bd4953679d1af2cd5b4cc053b0e2ef17745ae44ae919cd8fd9663fbc0cd9ed36607e9b2472c206852

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Mu\Advertising

Filesize
24KB

MD5
1cc67aa27d683e35f6e2d52e27794fed

SHA1
6061d27882d9afb4bb885ed3be65b0bd44341e4b

SHA256
3c2451d0820eb623c7e95da72017071fce5c5091c168f1b18b3010e914ef84d5

SHA512
34776fb3abd952aece898051293773ac220391e6b114445317c9b51757a858cded9596e84c32e3019b7d9d660dfa880456b5b6c0ee6e10a64fe3431340132deb

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Mu\Analytics

Filesize
4KB

MD5
da298eacf42b8fd3bf54b5030976159b

SHA1
a976f4f5e2d81f80dc0e8a10595190f35e9d324b

SHA256
3abd2e1010e8824f200878942e0850d6e2620a2f0f15b87d32e2451fdda962ec

SHA512
5bf24c2df7cc12c91d1fb47802dbac283244c1010baa68bfae9eb5eb8ee25758156bb1e21f6cc3f55e7d71e5c330888ffd41469b2630eb86237c9970d7ede75e

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Mu\Content

Filesize
6KB

MD5
de67adf873370835f12a4962fa4b3a85

SHA1
99831e0a001b8604b5b431d09307273872d5f07e

SHA256
76975bf9dc15a979cfbf917496c385767357e1ce7ff30ac94dcc901cbc74607b

SHA512
f1ea69a38500afd96903d60f9bb2308ea1c368e28e970669467e8d7c637268774374dffe92fbe02a6d043ff0fb763913790ba617b5251cb46ee000423b591cc7

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Mu\Cryptomining

Filesize
1KB

MD5
16779f9f388a6dbefdcaa33c25db08f6

SHA1
d0bfd4788f04251f4f2ac42be198fb717e0046ae

SHA256
75ad2a4d85c1314632e3ac0679169ba92ef0a0f612f73a80fdd0bc186095b639

SHA512
abd55eff87b4445694b3119176007f71cf71c277f20ea6c4dcadfb027fdce78f7afbcf7a397bd61bd2fa4bc452e03087a9e0e8b9cc5092ec2a631c1ebb00ee25

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Mu\Fingerprinting

Filesize
1KB

MD5
b46196ad79c9ef6ddacc36b790350ca9

SHA1
3df9069231c232fe8571a4772eb832fbbe376c23

SHA256
a918dd0015bcd511782ea6f00eed35f77456944981de7fd268471f1d62c7eaa3

SHA512
61d6da8ee2ca07edc5d230bdcbc5302a2c6e3a9823e95ccfd3896d2e09a0027fece76f2c1ea54e8a8c4fa0e3cf885b35f3ff2e6208bf1d2a2757f2cbcdf01039

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Mu\Other

Filesize
34B

MD5
cd0395742b85e2b669eaec1d5f15b65b

SHA1
43c81d1c62fc7ff94f9364639c9a46a0747d122e

SHA256
2b4a47b82cbe70e34407c7df126a24007aff8b45d5716db384d27cc1f3b30707

SHA512
4df2ce734e2f7bc5f02bb7845ea801b57dcf649565dd94b1b71f578b453ba0a17c61ccee73e7cff8f23cdd6aa37e55be5cb15f4767ff88a9a06de3623604fbf0

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Mu\Other

Filesize
34B

MD5
cd0395742b85e2b669eaec1d5f15b65b

SHA1
43c81d1c62fc7ff94f9364639c9a46a0747d122e

SHA256
2b4a47b82cbe70e34407c7df126a24007aff8b45d5716db384d27cc1f3b30707

SHA512
4df2ce734e2f7bc5f02bb7845ea801b57dcf649565dd94b1b71f578b453ba0a17c61ccee73e7cff8f23cdd6aa37e55be5cb15f4767ff88a9a06de3623604fbf0

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Mu\Social

Filesize
355B

MD5
4c817c4cb035841975c6738aa05742d9

SHA1
1d89da38b339cd9a1aadfc824ed8667018817d4e

SHA256
4358939a5a0b4d51335bf8f4adb43de2114b54f3596f9e9aacbdb3e52bef67e6

SHA512
fa8e1e8aa00bf83f16643bf6a22c63649402efe70f13cd289f51a6c1172f504fedd7b63fc595fb867ecb9d235b8a0ea032b03d861ebb145f0f6a7d5629df8486

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Advertising

Filesize
997B

MD5
d81750ec7af7709a55e2d1c830d123e6

SHA1
c2f118b9c96d8b793ea751ff17fe4e2b945bd8a5

SHA256
28ca4a595aea39469c715d2a64d026cde5a5fba021d8471b7183fdd019df2081

SHA512
a6b4c4c97fb47a158fe5eb2125cb42b7ea1d37df90c652ce31396a29b224f94834a4ea36d1ffc61bf6da4316e8fec5f139054be15466193cf6080621286effd9

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Advertising

Filesize
997B

MD5
d81750ec7af7709a55e2d1c830d123e6

SHA1
c2f118b9c96d8b793ea751ff17fe4e2b945bd8a5

SHA256
28ca4a595aea39469c715d2a64d026cde5a5fba021d8471b7183fdd019df2081

SHA512
a6b4c4c97fb47a158fe5eb2125cb42b7ea1d37df90c652ce31396a29b224f94834a4ea36d1ffc61bf6da4316e8fec5f139054be15466193cf6080621286effd9

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Analytics

Filesize
126B

MD5
c4acde1c5f5561bdddbc9846e9f3d2f2

SHA1
520973b512aa1a374e18518f85dc801b3fc1767e

SHA256
9fa640bc46d85197048b78253c2745aca7c7d48d023d55269c11e9b8d66ea703

SHA512
d938ae798f11b348bf2c57995fd3731c4ee24d03fb59fc2708bd15fdbdacae21ada1123e3ef08b328ed140366f590d4afc4799ba77a97cf7fe186f815d107a73

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Analytics

Filesize
126B

MD5
c4acde1c5f5561bdddbc9846e9f3d2f2

SHA1
520973b512aa1a374e18518f85dc801b3fc1767e

SHA256
9fa640bc46d85197048b78253c2745aca7c7d48d023d55269c11e9b8d66ea703

SHA512
d938ae798f11b348bf2c57995fd3731c4ee24d03fb59fc2708bd15fdbdacae21ada1123e3ef08b328ed140366f590d4afc4799ba77a97cf7fe186f815d107a73

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Content

Filesize
36B

MD5
7f077f40c2d1ce8e95faa8fdb23ed8b4

SHA1
2c329e3e20ea559974ddcaabc2c7c22de81e7ad2

SHA256
bda08f8b53c121bbc03da1f5c870c016b06fa620a2c02375988555dd12889cdf

SHA512
c1fb5d40491ae22a155a9bd115c32cbe9dbcba615545af2f1a252475f9d59844763cd7c177f08277d8ef59e873b7d885fda17f2a504d9ec2c181d0f793cb542b

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Content

Filesize
36B

MD5
7f077f40c2d1ce8e95faa8fdb23ed8b4

SHA1
2c329e3e20ea559974ddcaabc2c7c22de81e7ad2

SHA256
bda08f8b53c121bbc03da1f5c870c016b06fa620a2c02375988555dd12889cdf

SHA512
c1fb5d40491ae22a155a9bd115c32cbe9dbcba615545af2f1a252475f9d59844763cd7c177f08277d8ef59e873b7d885fda17f2a504d9ec2c181d0f793cb542b

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Cryptomining

Filesize
32B

MD5
4ec1eda0e8a06238ff5bf88569964d59

SHA1
a2e78944fcac34d89385487ccbbfa4d8f078d612

SHA256
696e930706b5d391eb8778f73b0627ffc2be7f6c9a3e7659170d9d37fc4a97b5

SHA512
c9b1ed7b61f26d94d7f5eded2d42d40f3e4300eee2319fe28e04b25cdb6dd92daf67828bff453bf5fc8d7b6ceb58cab319fc0daac9b0050e27a89efe74d2734e

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Cryptomining

Filesize
32B

MD5
4ec1eda0e8a06238ff5bf88569964d59

SHA1
a2e78944fcac34d89385487ccbbfa4d8f078d612

SHA256
696e930706b5d391eb8778f73b0627ffc2be7f6c9a3e7659170d9d37fc4a97b5

SHA512
c9b1ed7b61f26d94d7f5eded2d42d40f3e4300eee2319fe28e04b25cdb6dd92daf67828bff453bf5fc8d7b6ceb58cab319fc0daac9b0050e27a89efe74d2734e

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Fingerprinting

Filesize
172B

MD5
3852430540e0356d1ba68f31be011533

SHA1
d3f622450bcf0ced36d9d9c0aad630ebccfcb7ff

SHA256
f1f413704c32a28a31a646f60cad36cc2da793e143f70eee72ae56f736df8054

SHA512
7a4faa493c141ea88d6cd933dfc0b50ef6d25983323db2b931c7512e039859d60c4935e56b771264ca72b45c035b1962ad8680d616eaaf04fbc5a6e0b674e435

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Fingerprinting

Filesize
172B

MD5
3852430540e0356d1ba68f31be011533

SHA1
d3f622450bcf0ced36d9d9c0aad630ebccfcb7ff

SHA256
f1f413704c32a28a31a646f60cad36cc2da793e143f70eee72ae56f736df8054

SHA512
7a4faa493c141ea88d6cd933dfc0b50ef6d25983323db2b931c7512e039859d60c4935e56b771264ca72b45c035b1962ad8680d616eaaf04fbc5a6e0b674e435

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Other

Filesize
75B

MD5
c6c7f3ee1e17acbff6ac22aa89b02e4e

SHA1
bdbd0220e54b80b3d2ffbbddadc89bfbb8e64a8b

SHA256
a2f9f27d6938a74979d34484bced535412969c2533dc694bfa667fe81d66d7d4

SHA512
86ed28ffdd00b4a397a20968792fcd30dd4a891a187a7789c00c88b64689b334a11fa087eb54ccee813c181cf891b43184dde7af9a6f33caed2a71e2c445a7b4

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Other

Filesize
75B

MD5
c6c7f3ee1e17acbff6ac22aa89b02e4e

SHA1
bdbd0220e54b80b3d2ffbbddadc89bfbb8e64a8b

SHA256
a2f9f27d6938a74979d34484bced535412969c2533dc694bfa667fe81d66d7d4

SHA512
86ed28ffdd00b4a397a20968792fcd30dd4a891a187a7789c00c88b64689b334a11fa087eb54ccee813c181cf891b43184dde7af9a6f33caed2a71e2c445a7b4

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Social

Filesize
3KB

MD5
ae92ac226ba04a34a6e8f1140f04bbbf

SHA1
db368322491478a19ca31244b2af1e3988d8645d

SHA256
19031c7f1b4ef0c92222723114164ed772c7811205f646821ddc41e4901480a0

SHA512
1b6b5144cd87d4e06fe240aedc6e46cd4019457903ec267be5b450690cb56c88430bd43bad086afe13c122d93e2b1aac50c129033a9a4197ec3e6ebdb161e038

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Social

Filesize
3KB

MD5
ae92ac226ba04a34a6e8f1140f04bbbf

SHA1
db368322491478a19ca31244b2af1e3988d8645d

SHA256
19031c7f1b4ef0c92222723114164ed772c7811205f646821ddc41e4901480a0

SHA512
1b6b5144cd87d4e06fe240aedc6e46cd4019457903ec267be5b450690cb56c88430bd43bad086afe13c122d93e2b1aac50c129033a9a4197ec3e6ebdb161e038

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Trust Protection Lists\1.0.0.25\Sigma\Staging

Filesize
5KB

MD5
61dddcad6e2e3bd2b440facc1f56c7a7

SHA1
be7750704fa3b007e20c7366e364b3194e4d5587

SHA256
35a7a93fe66261463bdafeddc46bf9ddcc79f0ef81244066b9332f71da23aff6

SHA512
40d87f54c00825ddd5cf96d5fc4760835520d008d884fb2d35c28a1397946e491a156423cf28bf29bdfa1cb669694833786ca273bba91176b8586ad092bd7927

Download Submit
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\hyphen-data\101.0.4906.0\hyph-as.hyb

Filesize
703B

MD5
8961fdd3db036dd43002659a4e4a7365

SHA1
7b2fa321d50d5417e6c8d48145e86d15b7ff8321

SHA256
c2784e33158a807135850f7125a7eaabe472b3cfc7afb82c74f02da69ea250fe

SHA512
531ecec11d296a1ab3faeb2c7ac619da9d80c1054a2ccee8a5a0cd996346fea2a2fee159ac5a8d79b46a764a2aa8e542d6a79d86b3d7dda461e41b19c9bebe92

Download Submit
C:\Users\Admin\Videos\Captures\desktop.ini

Filesize
190B

MD5
b0d27eaec71f1cd73b015f5ceeb15f9d

SHA1
62264f8b5c2f5034a1e4143df6e8c787165fbc2f

SHA256
86d9f822aeb989755fac82929e8db369b3f5f04117ef96fd76e3d5f920a501d2

SHA512
7b5c9783a0a14b600b156825639d24cbbc000f5066c48ce9fecc195255603fc55129aaaca336d7ce6ad4e941d5492b756562f2c7a1d151fcfc2dabac76f3946c

Download Submit
memory/620-1140-0x0000022744F10000-0x0000022744F11000-memory.dmp

Filesize
4KB

Download
memory/620-1157-0x0000022744EE0000-0x0000022744F0B000-memory.dmp

Filesize
172KB

Download
memory/872-933-0x000001B2D7B50000-0x000001B2D7B51000-memory.dmp

Filesize
4KB

Download
memory/872-945-0x000001B2D7B20000-0x000001B2D7B4B000-memory.dmp

Filesize
172KB

Download
memory/1420-1116-0x0000026F6D7C0000-0x0000026F6D7EB000-memory.dmp

Filesize
172KB

Download
memory/1420-1098-0x0000026F6D7F0000-0x0000026F6D7F1000-memory.dmp

Filesize
4KB

Download
memory/1816-702-0x000001ED0E180000-0x000001ED0E181000-memory.dmp

Filesize
4KB

Download
memory/1816-905-0x000001ED0B1D0000-0x000001ED0B1FB000-memory.dmp

Filesize
172KB

Download
memory/2556-402-0x00007FFA13850000-0x00007FFA13851000-memory.dmp

Filesize
4KB

Download
memory/3584-1008-0x0000013F82AC0000-0x0000013F82AC1000-memory.dmp

Filesize
4KB

Download
memory/3584-1077-0x0000013F82A90000-0x0000013F82ABB000-memory.dmp

Filesize
172KB

Download
memory/3628-358-0x00007FFA13850000-0x00007FFA13851000-memory.dmp

Filesize
4KB

Download
memory/3748-1172-0x000001F0A4710000-0x000001F0A4711000-memory.dmp

Filesize
4KB

Download
memory/3748-1312-0x000001F0A46E0000-0x000001F0A470B000-memory.dmp

Filesize
172KB

Download
memory/3896-1003-0x000001ACDE4E0000-0x000001ACDE50B000-memory.dmp

Filesize
172KB

Download
memory/3896-985-0x000001ACDE510000-0x000001ACDE511000-memory.dmp

Filesize
4KB

Download
memory/4332-281-0x000001C42FAD0000-0x000001C42FAE0000-memory.dmp

Filesize
64KB

Download
memory/4332-280-0x000001C435DC0000-0x000001C435DC1000-memory.dmp

Filesize
4KB

Download
memory/4332-1647-0x000001C42FAD0000-0x000001C42FAE0000-memory.dmp

Filesize
64KB

Download
memory/4332-239-0x00007FF9F3AE0000-0x00007FF9F402C000-memory.dmp

Filesize
5.3MB

Download
memory/4332-240-0x00007FF9F4E80000-0x00007FF9F5282000-memory.dmp

Filesize
4.0MB

Download
memory/4332-253-0x00007FF61C860000-0x00007FF61D860000-memory.dmp

Filesize
16.0MB

Download
memory/4332-258-0x000001C42FAD0000-0x000001C42FAE0000-memory.dmp

Filesize
64KB

Download
memory/4332-269-0x000001C4399A0000-0x000001C439DE0000-memory.dmp

Filesize
4.2MB

Download
memory/4332-271-0x000001C439DE0000-0x000001C439FE0000-memory.dmp

Filesize
2.0MB

Download
memory/4332-279-0x000001C435DC0000-0x000001C435DC1000-memory.dmp

Filesize
4KB

Download
memory/4976-622-0x000001D54D5D0000-0x000001D54D5FB000-memory.dmp

Filesize
172KB

Download
memory/4976-376-0x000001D5504E0000-0x000001D5504E1000-memory.dmp

Filesize
4KB

Download
memory/4976-375-0x00007FFA13760000-0x00007FFA13761000-memory.dmp

Filesize
4KB

Download
memory/5088-966-0x00000225130E0000-0x00000225130E1000-memory.dmp

Filesize
4KB

Download
memory/5088-969-0x00000225130E0000-0x00000225130E1000-memory.dmp

Filesize
4KB

Download
memory/5088-968-0x00000225130E0000-0x00000225130E1000-memory.dmp

Filesize
4KB

Download
memory/5088-967-0x00000225130E0000-0x00000225130E1000-memory.dmp

Filesize
4KB

Download
memory/5088-958-0x00000225130E0000-0x00000225130E1000-memory.dmp

Filesize
4KB

Download
memory/5088-964-0x00000225130E0000-0x00000225130E1000-memory.dmp

Filesize
4KB

Download
memory/5088-965-0x00000225130E0000-0x00000225130E1000-memory.dmp

Filesize
4KB

Download
memory/5088-959-0x00000225130E0000-0x00000225130E1000-memory.dmp

Filesize
4KB

Download
memory/5088-957-0x00000225130E0000-0x00000225130E1000-memory.dmp

Filesize
4KB

Download