Overview

overview

10

Static

static

10

RobloxHelper.exe

windows7-x64

10

RobloxHelper.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    RobloxHelper.exe

  • Size

    67KB

  • MD5

    7a082dad2399c91b436d12a4cbb4fbee

  • SHA1

    f88682cca80e472eec683123b67f229e322cd634

  • SHA256

    9ea3c29b210f11fc542c13e49f0a31c84962927b67f75f810a6bf416a7591ddd

  • SHA512

    3497b0ab659d57a459cd0736b847a7951f02dcd52bb499f686cd0e4e8aae4e6123b17a4ba6e71a3756636eb60ee39ebed239a884634f9cfe857a4f87a469302a

  • SSDEEP

    1536:eTg/EN+Pa0O+T+b7M4PDTEWt6xJgO+3rBJ:eD+P2y+b7MKfEWnO+9J

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

bay-cf.gl.at.ply.gg:20819:20819

188.254.126.46:20819
Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • RobloxHelper.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections