Overview

overview

8

Static

static

1

hacks_roblox.html

windows7-x64

8

hacks_roblox.html

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    hacks_roblox

  • Size

    149KB

  • Sample

    241010-pbad1a1cln

  • MD5

    4d4b8c6dd2e7fa800ff3cea15d42aba3

  • SHA1

    f7e4bd4d2a409373a00fd8aacae526aca64c0912

  • SHA256

    385435c6c03f4aeb9c3511b991b58efee624f8ecdeda789200c33e88eeed58ef

  • SHA512

    f1d3d23c06d7e241610a717c3f955b7d961535f80d941f8a7b80a2c19d3de4bc7c650640ac233337f12ff15c7b62905671d7b37012941baf91fb5612f5dcdd74

  • SSDEEP

    1536:IRPEVWYAc17jsAPA118IXAE1wAG12AC14ABAzAr1ZAM13D8ctWZvmWS6/:IRPEf17js1x1I1m1X131T8cgZvmWS6/

Score
8/10
discoveryevasion

Malware Config

Targets

    • Target

      hacks_roblox

    • Size

      149KB

    • MD5

      4d4b8c6dd2e7fa800ff3cea15d42aba3

    • SHA1

      f7e4bd4d2a409373a00fd8aacae526aca64c0912

    • SHA256

      385435c6c03f4aeb9c3511b991b58efee624f8ecdeda789200c33e88eeed58ef

    • SHA512

      f1d3d23c06d7e241610a717c3f955b7d961535f80d941f8a7b80a2c19d3de4bc7c650640ac233337f12ff15c7b62905671d7b37012941baf91fb5612f5dcdd74

    • SSDEEP

      1536:IRPEVWYAc17jsAPA118IXAE1wAG12AC14ABAzAr1ZAM13D8ctWZvmWS6/:IRPEf17js1x1I1m1X131T8cgZvmWS6/

    Score
    8/10
    discoveryevasion

    • Downloads MZ/PE file

    • Modifies Windows Firewall

      evasion

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks