Overview

overview

10

Static

static

10

Robux_Gene...er.exe

windows7-x64

7

Robux_Gene...er.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    02-02-2024 13:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Robux_Generator_2023/Installer.exe

  • Size

    14.3MB

  • MD5

    e0bf4b95b5fc778d1263591470f1bfdf

  • SHA1

    900bfbf77b4159bc3e75ee2a400474875fcb1614

  • SHA256

    48b24b0bb4f81a9171a6cdca553dcc341875cb23c8509293f119510df6a8b8a1

  • SHA512

    ae92b93e2ad8d40501b5acf1012a1136f92ea8e4194a453b88b7ca905ac7ad407fa4259610b8befdb3ad1cc38fdadfea865f8ca8498007fae86f7ce1550be7bc

  • SSDEEP

    393216:/qu7L/qdQusl7Q+q9RoWOv+9fa2Nwl5SRVzwkB:yCLydQu2QdborvSiawlUVzw

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Robux_Generator_2023\Installer.exe
    "C:\Users\Admin\AppData\Local\Temp\Robux_Generator_2023\Installer.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1488
    • C:\Users\Admin\AppData\Local\Temp\Robux_Generator_2023\Installer.exe
      "C:\Users\Admin\AppData\Local\Temp\Robux_Generator_2023\Installer.exe"
      2⤵
      • Loads dropped DLL
      PID:1940

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\_MEI14882\python310.dll
    Filesize

    3.3MB

    MD5

    bf97c83fd239ff7b661a54eeeb84c780

    SHA1

    e8b199a79cb2c19079577cdd30bd19254c108ca0

    SHA256

    6a555c2455e23fdb59eb3f76d5199226a813541bc37164bf4ecb021c33ddb6ba

    SHA512

    5c2428c18549eefe111cbef77cb963bbe520d1a67c9e22cc138b6f046f6e079f9b88af413825c66bb05db4440da9dc0ce6b277fca90ffaa4fbcbdaf60715b5ae

    Download Submit

  • \Users\Admin\AppData\Local\Temp\_MEI14882\python310.dll
    Filesize

    271KB

    MD5

    589dbb6248fe9727d751e081cc58984a

    SHA1

    859c6721e45c8d8d196a4bcfabb8c4f0a829186e

    SHA256

    8016e7503c59c451cdacf4588c8f662c6b83ef9625ed30829c843cee0260d2d6

    SHA512

    afa7a9eb4ba26aac1fe976e4112d48d03e36af6668d0cd5ba068de5d6bd8ea7288a997b9b44a811e7a4d63e2e112ebf8c950af9988c891f5d8ada0b0a2b80d10

    Download Submit