Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://roblox.com

windows7-x64

1

Resubmissions

05/07/2024, 18:45

240705-xea4psshnr 7

05/07/2024, 18:45

240705-xd41dsshnm 1

05/07/2024, 18:44

240705-xdxw3sshmq 1

Analysis

  • max time kernel
    841s
  • max time network
    842s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/07/2024, 18:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://roblox.com

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://roblox.com
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2872
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2872 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2808

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    4120841e8e3b4b0bf50f204ec358d8cb

    SHA1

    43695784723a05d802f55140dbd1ef1a687e8464

    SHA256

    51cea6b2827a8cfc180b198479d93e4dd0b1ccf662c2c7dbe4c899e07f3eb399

    SHA512

    4908ef32f7a923789ce788f7fefc4374c0442aa926b3038239afc459c027671d58519d493dc71c31c9d7e638d290dc1c20a3b1fc41b4208215cb3d956d8c921d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd20c487f84b8ff29ea4f94ba44e9395

    SHA1

    aec5e695bc039d83e229a3c146efb08de0f8e120

    SHA256

    972501f786315fc077296c5ebbd665d7960beba2152f4a50e29d6e82ba251a05

    SHA512

    a91ecf8c078b731d3e218c806afc3cd7eb522cc5e025c9cea8f7024e99fd0c30f7be567b240c1b4b1608a3fb8654f952709dea2d61d9686dd6b30e827b11d8e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a13296ad3d45cde691bb4f31e8ee813

    SHA1

    c25218acee1b8febf678cd585ea16123d8335e39

    SHA256

    db37270ee29f0fc48e7e3b63eb8d08a09e2f77b415180479fec1dfe6639a41dd

    SHA512

    1101d58e5fb4f025514f6ff17094f97beccd7b38a518d1a255167ea2e46c5d8dfe5d535f7c394143a861583753861668cb2ad93bda664a896fbb277e5ccc4f42

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9e96a683191094e8ce4e0723500a88b2

    SHA1

    f9ae0dfd44fef9adb9fa9f9f1819c7124d0f9bfd

    SHA256

    c149a1f8a1e89686edb8b347c157586d9e9bfb6fb1a0aee4a96464022229ee40

    SHA512

    6ec9a16cba38766cef7a7832df6d894dc422fe771ba0ab840534cac930c17f5621d060f29a76173ed035f54c788a4fb9693469e42275283c92aaab63c1c9fc77

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be25bcabe233c86f3eaf691d092ede87

    SHA1

    a3f37a98fd89c6c9a4084359c522113cb1479003

    SHA256

    1757f45da74c609d325adb633879fb0e54a5721d984c3d1295083646cca83f80

    SHA512

    fea96b60e7bb03b6d0b66eac3ceccdf72c49d42c4446ba799fefd7016de009c0a24abcf2f6135e2c1e4fb70d2c30f3fae5ce6e6163bd12f9f898b45685297b36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    86ef5073aff85a12aea276577072a661

    SHA1

    fa0e8014586cb16a17441b710686469645c15c25

    SHA256

    72a82c7f5f28bc5eebc793ac93a0014e9a7f16ccc46872c54ee45970607c3252

    SHA512

    c6fc8d496864ec7a65c2baccfff30e02659e905528e3fd324cf6b149521f94802a4bb0ce6468565b4ad1d12d6fa059806ca157cbdf267b3f688a40a31301de76

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59f6abba5b6897b5da8e130d4ccff1ed

    SHA1

    f38ee2508bc3e674c26a69ac4d1356fca3b923ab

    SHA256

    bfcc840c3ed5a33c49f32f502e2e44255155e645ceda82d1224514461d72df73

    SHA512

    d7341a713f166e94c4ec0f934f057ef83d158d0db974f2e88e924cfabc734bc86aac5130714685f56f826d5d84c9de303ed8601ac685cd153fc96cbde4558543

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53c9f03b37224c23f4fbf2a1367961a2

    SHA1

    e2431a29a97080ed87ec4f94629500d06caa6e87

    SHA256

    d5e67f3b28c2eaf1260a109a4bd406b92b5a0f838d15ade60093b30daa65b9b3

    SHA512

    074adb68092f48076b10cfd7f5a0e5c31adaaafae066af2857518844c21e9462fd81791cdfcd9558fe387ea02f9698b23eafe6e6fc2d5c69a8d1101bf3456863

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7153a0b6a8287065233535f1a28e3cfb

    SHA1

    5fbe9fd50ad5f58f58eeff6f53aefd04da787a9a

    SHA256

    52c1e23fc4ea879c659251b63246939d4a1c0dabcf1c4f0d87d5933113bbe77e

    SHA512

    4596220baaa0c88abc740ee050863b77307b7a3544b17d814c03713cf144542cc0863cee935e301270470622639113e8e724e0d88652c34729568e7ed4651335

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    764f5413e0e1d9e57a5de75a4f98f178

    SHA1

    57a2384cddb0582f60b8bdd6a612f1b060c65168

    SHA256

    e16e15c15cf48f1ab450b03f106216921b2232d8a54ee1405ebec177a05665d9

    SHA512

    34de1d87393fcdb2b5d4cc54f7ce77c7dfd61696415e1e0f521342250db7231d00f34c3700756e159820038093b0f3b5e549b74313010625aa090f2b2770d7e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13aea5f0ddad3c13ce4d65b01ea06462

    SHA1

    a18702682d067e0d4fe6c49e5d95697ff7cd550a

    SHA256

    63c11c566654d728ada62e3f338501203950f6f1f8599f47353e408af8d68ea4

    SHA512

    1ee270ace5783c8f92b46186d7f4de3e0d5b44e240113e9bebf2eef02fe8e11a7c94093ccd2e222fc249755c29f63122b5278ffbbda85e8bd2dce599cbfcd500

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    194bf62c0c90ae3f406bcafa29d1cdc7

    SHA1

    b1d61f3f941fcfb3ce103d08d2fc7037e408d461

    SHA256

    6757062c6e2c870c8d1936774f6616e84effd6e02e6b692c25d7f60245b96dd6

    SHA512

    597d9af2fc332ac20541163cd2ae737e16770a8056dc7a1e39cc17b032a1acf62ee61e60c69f427c812601ece236032df4c9c54b27d1dc659f2e888f67fc23ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb4c0b394d78835057801c5cdcb37e9a

    SHA1

    2b5a2d065af0f60704376890ca08302bd63b5085

    SHA256

    1b5926cca91878539a113c27e9491e6cfe3b228aa0abc6a63a9ce4b3723d7e38

    SHA512

    4923cdecfa72346a0aa23f42c3afc673ab07f8813437217d13cdad78d593c308c02e786eb5d1ff4017aa0ded68256041fecc71fc6e60ed1a26e6e49ece4ee0cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    06b298a44bcdb9beda094f02257b10fa

    SHA1

    7a80b15138b8eb81cf2442e5708c5e116f94293b

    SHA256

    8d79f6b9894e45ff79cae18707a44f3b1a9d94ea36a4635f1f2ea3849f812e5d

    SHA512

    1b8fc2b71d95d196550769d607fd7dd2edcc76da9836d0cb1c195836a6f01aa7d5f94d3792c273ba795241f142a477cd98a61bd9aed39d7b344ca6148d53f691

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5ada8c10f10c7fff84ff4b717956711

    SHA1

    510dbbf47f8ad244017572cf102b76d1922e31fd

    SHA256

    523a56ab05081a9cf227e3eac5f572276348c58fff9b5adc85f2ad9c50ce7b77

    SHA512

    3150734a8551c4692e59e6075ce84dc5bcf542061a636cc9bc5315faf4dc8593f8c71e57c375b08a3e6b9680272535017e4c502e172168109f5a35022b07d882

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba8978ce02bfbda124908588e4ec10ec

    SHA1

    cea1872b5e28731c325dfd62f4d6e5e14edd7b59

    SHA256

    2834e0a3dc90bf4b5b4c1b580c9a863e70d66c640ac62d5cab37a6b75f12d9bb

    SHA512

    e6dbf58e0bc7f1726d4b5dc6b1cdf6edb9b34121b300e530fe5c58725821c26a7b79d61b6602b286868e0b9dcfda2c29aea760f606d49e772b91f880eabf0766

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f51b8efa151d37d1fd2b333fec359896

    SHA1

    034ca53391a2a01a4e4e9ac0648969de06367d72

    SHA256

    b5ff1a97636b3bd8cf68a4ab083d20dde75da7643c1ca105ca8620d1ddeeab05

    SHA512

    4c16d1c14ca6917beb001d6d58278d65afbf727334ec0b91d8e5ffad6967bd3c772c72ecfb555ff8fb6c2b3c064b334b471816f7e65b29521cbec040340a5dc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2a1acc03f17be2f2061163779e056bf

    SHA1

    9f65d8a3e403c8d326303887b89ef38a7f1f4b79

    SHA256

    a8842fc2fd441385029ed9d1f354385dd3616e9eae8ac85a473eb79f79fd5695

    SHA512

    5dc1801f82431fb3718d22c7750cbe650c5cfcc775b2dae6c8825cf377f70997171c295794b36b5e3e9f1161614760fc84d5c98bb5451037ee8b055d773d03c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d02ff48a793e5dff6fd3831ac52ab88

    SHA1

    deb8c0574cdc1df51450d6510660a16f99c25e56

    SHA256

    ceb61d4e5b8032e514cfa91a3d75e9434513a515d03f565a6b9765b9b118dbf5

    SHA512

    84ddbe121b123cf19ddc6e56a1d90c24949fd52633e1a887fcb1e04d5409c185eebca8b8bdf21bc40c423e004339433ac7806967e15902c656af9960aa815692

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    698ea24f49f3cc944d6ee0923ff4fa8d

    SHA1

    2446d8b67941242266f71292643a6edea7a77efb

    SHA256

    9027820d1b171713f729725e80984032c3e4c836242d15ae8dfc36b00408db5e

    SHA512

    ae19cb35e5b4aa286830f976c1a050589b0ef95cad8136075148b9efbbaed42a0205ad3399d23428576ad7efb5e50a1df1bbb1625012c410a49fb8be9083fdef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94ba7f4c4e5e1f00f7180ee4610555e0

    SHA1

    85bd730578befced3d8347ce5f5d37a910270aff

    SHA256

    7b2ce56b69a6432cef7def670a2d10030e445a1db6eaeb780aab6c6ff58ff3ee

    SHA512

    d0981ee240cd8396853e1f7ae0eec636cf9403f3d438d77d5fd7ebdd931093ca4e6fe0facebeead13540a2eac54700735159a297894af427d0eacd598b2601ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    2f76e33459368aaf33f5ddeea6aa0861

    SHA1

    e7c24b82748e27b327d2186fec9c6039e41c8014

    SHA256

    d875b85e0bfecb5efc59927fecf6080c2f801ce8aafd5833c910204bc7e83f03

    SHA512

    1d67193a52a94157db39bc88e07b8155abf54cd024a8e1017893f3b87297f14738949cdd05a2c6539bb0ebac823cb53f21b919d51ac828319024294f0fb4bb51

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1D57.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit