e03eba560defa612a5ac1e09ab57b51d10723f9285f598d80140d03d2bb2bd1e | Triage

Submit
Reports

Overview

overview

7

Static

static

7

Sirhurt Ro...on.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

Robux Session Key.zip
Size

5.4MB
Sample

241008-3tde9szdkj
MD5

475de9fcf2a89d4b7a23d17695be7825
SHA1

c9a02d8d4f3d609d75bf3fa889a3086c49070865
SHA256

e03eba560defa612a5ac1e09ab57b51d10723f9285f598d80140d03d2bb2bd1e
SHA512

aa5792f33181d70c9ed3196e0622d12722f04e8074e7027c719abfbef64b8f043d64f834579292b47c7b87c9fe4a0aa2770c3559aa4b17edc000383693bfa0ac
SSDEEP

98304:DNKbKfPlNznJxtX39U1s5KpIEkZOf0a+iBgd86oNiEvOZO2unz3Q31yTd7ex351z:HfjJ3nzKpGOMa+iEN5ZO2uz3C1Ad7ex7

Score

7^/10

discovery vmprotect

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Sirhurt Robux Authentication.exe

Resource

win10v2004-20241007-en

discovery vmprotect

windows10-2004-x64

3 signatures

1800 seconds

Malware Config

Targets

- Target
  
  Sirhurt Robux Authentication.exe
- Size
  
  5.6MB
- MD5
  
  1d48a43d73e3302b5e0d9044e551bf01
- SHA1
  
  e0c2f1cfbfef402f671e96a6158f177b3ac9b303
- SHA256
  
  ad33a93125acbd39c1384d8de52b77683cfb4942562700ddc700ff37bad021aa
- SHA512
  
  46c8188f6e65460a7b7b08101338c310f69ae646130da3a03e0fbaa356af4495603e7997ff5f4b038adde25ce4695f953cd86b7429e5878d95b1609dbb1028b2
- SSDEEP
  
  98304:mP0vbhawifxp+UvrHOGvuuWfm3+sgbD/YCe03tWlITd1EjLSSpieaj:mPGawAX+UTjW+u3/gCFfJMSSp
Score

7^/10

discovery vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryvmprotect

© 2018-2025

Terms | Privacy