Analysis
-
max time kernel
1809s -
max time network
1827s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
-
submitted
12/01/2024, 19:02
General
-
Target
RobloxApp_client.exe
-
Size
10.5MB
-
MD5
4ea993a2a09585a906c94b7d918b60f1
-
SHA1
74f2560d41b6b7d721fc76b6cd1591a0e2c9d2b0
-
SHA256
46b9742190bda8c4a1cd73c5b911a1cd668bf90c992b9e5afc718069cff0d23a
-
SHA512
0f19587ee651fec58c9de040db5b29caacab836c53935057d4b10fe9b1fea846a48dcb7dfe8ff346cef98ce78ddd4dac0514b6cc073a86766686e4e457587e65
-
SSDEEP
98304:HlDTNcxnGodz+xUlWzuQdu9Gkyw1/UOD1GqbRScznrhbmMoKCAx:Hl0bxH1/PGqFSIr5oKBx
Score
6/10
Malware Config
Signatures
-
Legitimate hosting services abused for malware hosting/C2 1 TTPs
Processes
-
C:\Users\Admin\AppData\Local\Temp\RobloxApp_client.exe"C:\Users\Admin\AppData\Local\Temp\RobloxApp_client.exe"1⤵
-
C:\Program Files\Google\Chrome\Application\chrome.exe"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4304 --field-trial-handle=1352,i,15609994694416141511,10166512350567915651,131072 /prefetch:81⤵
-
C:\Program Files\Google\Chrome\Application\chrome.exe"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4420 --field-trial-handle=1352,i,15609994694416141511,10166512350567915651,131072 /prefetch:81⤵
-
C:\Program Files\Google\Chrome\Application\chrome.exe"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2544 --field-trial-handle=1352,i,15609994694416141511,10166512350567915651,131072 /prefetch:81⤵
-
C:\Program Files\Google\Chrome\Application\chrome.exe"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4504 --field-trial-handle=1352,i,15609994694416141511,10166512350567915651,131072 /prefetch:81⤵
-
C:\Program Files\Google\Chrome\Application\chrome.exe"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=14 --mojo-platform-channel-handle=1524 --field-trial-handle=1352,i,15609994694416141511,10166512350567915651,131072 /prefetch:11⤵
-
C:\Program Files\Google\Chrome\Application\chrome.exe"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=15 --mojo-platform-channel-handle=3736 --field-trial-handle=1352,i,15609994694416141511,10166512350567915651,131072 /prefetch:11⤵
-
C:\Program Files\Google\Chrome\Application\chrome.exe"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3520 --field-trial-handle=1352,i,15609994694416141511,10166512350567915651,131072 /prefetch:81⤵
-
C:\Program Files\Google\Chrome\Application\chrome.exe"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --mojo-platform-channel-handle=3776 --field-trial-handle=1352,i,15609994694416141511,10166512350567915651,131072 /prefetch:11⤵