Overview

overview

5

Static

static

3

NetflixCE ...io.exe

windows7-x64

5

NetflixCE ...io.exe

windows10-2004-x64

5

NetflixCE ...ct.lua

windows7-x64

3

NetflixCE ...ct.lua

windows10-2004-x64

3

NetflixCE ...64.pot

windows7-x64

1

NetflixCE ...64.pot

windows10-2004-x64

1

NetflixCE ...ua.exe

windows7-x64

1

NetflixCE ...ua.exe

windows10-2004-x64

1

NetflixCE ...er.exe

windows7-x64

1

NetflixCE ...er.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    60s
  • max time network
    56s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-04-2024 22:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NetflixCE V4/rbxfpsunlocker.exe

  • Size

    605KB

  • MD5

    09d083f0e2c1e8a3561209902333ad8f

  • SHA1

    d9692d3aba34a39aeb9e53cb3d25562b94e2e597

  • SHA256

    83dfcb08ea4aa1b857d952a8a177db775d1a7e9cfc30b528848a4a29c8dbf0b9

  • SHA512

    c71371263cacc4872a4bf621614940f08c9436062683be5de921ae6e509079e25ea380623e8945d40858819a664bd76590defb2a89949e8e5666190f1024ca6b

  • SSDEEP

    12288:IKOjJsDc2+WC+D+4H/xeGofENaTSuGCC709:IKyacgDD+4fwG1NaTSw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\NetflixCE V4\rbxfpsunlocker.exe
    "C:\Users\Admin\AppData\Local\Temp\NetflixCE V4\rbxfpsunlocker.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:4700

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads