790d8d9f0163cf4bc1bfff37d3109a7387626327a561ace0cfeb6e9273aaab86 | Triage

Resubmissions

03/08/2024, 01:43

240803-b5ghhstcnb 7

03/08/2024, 01:39

240803-b25e6stbqc 7

Sharing

General

Target

Roblox.Account.Gen.v1.1.0.exe
Size

16.7MB
Sample

240803-b25e6stbqc
MD5

d08800a125f32eb3053ba77d75f9095b
SHA1

e456be4de88c109f40435a562c6f2ea3b42af0b5
SHA256

790d8d9f0163cf4bc1bfff37d3109a7387626327a561ace0cfeb6e9273aaab86
SHA512

165a2bd5783411664e27ad129118f939625bf70338ffb9b032f306c78b27e0d3f534ccc6bc63e1fe885ce2b483185aa279b451577b5a36871d4ab0ba8e7f873b
SSDEEP

393216:DDTk3+eBcGfdKT74mSy7BAcE1AT+F5s4PG/zz2mH0P5Aurc/m:DPa75Fq74mr7uJA85s4PCzzlHn

Score

7^/10

discovery pyinstaller

Malware Config

Targets

- Target
  
  Roblox.Account.Gen.v1.1.0.exe
- Size
  
  16.7MB
- MD5
  
  d08800a125f32eb3053ba77d75f9095b
- SHA1
  
  e456be4de88c109f40435a562c6f2ea3b42af0b5
- SHA256
  
  790d8d9f0163cf4bc1bfff37d3109a7387626327a561ace0cfeb6e9273aaab86
- SHA512
  
  165a2bd5783411664e27ad129118f939625bf70338ffb9b032f306c78b27e0d3f534ccc6bc63e1fe885ce2b483185aa279b451577b5a36871d4ab0ba8e7f873b
- SSDEEP
  
  393216:DDTk3+eBcGfdKT74mSy7BAcE1AT+F5s4PG/zz2mH0P5Aurc/m:DPa75Fq74mr7uJA85s4PCzzlHn
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3