roblox_CE[.]zip | Triage

Sharing

General

Target

roblox_CE.zip
Size

17.0MB
MD5

4e14a7b29b9253d962bd0ec1431db720
SHA1

00e49a06829091dabacb7cb0f3c9e709097df06b
SHA256

71159411480a522b2b82a3dbd72f7e3335ee557a5e08d9fdec4ebfcc8028a530
SHA512

762b2f1bc84be91d9025e7626e812e9897f8267362c94e40100e395892a233bf6ff9b5cf594ba8837bf0fd61c6a1c48aa39e691f8c24402264a4a846c5907169
SSDEEP

393216:njhuP9lQUA5UGl4tAOg1kr7kZjmB6a2WQdAMzfgF3hp4YgRrGifZmSC:gVl87l4tAOX7kZAQdlz6hmtlpQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

unpack001/roblox_CE/ce_build.exe

Files

roblox_CE.zip
.zip

Password: cosmo11
roblox_CE/ce_build.exe
.exe windows:6 windows x64 arch:x64

Password: cosmo11

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

"
Size: - Virtual size: 9.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bbbb
Size: 17.0MB - Virtual size: 17.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�bb�
Size: 106KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
roblox_CE/readme.txt