General

  • Target

    AppleWare-1.0.2.ipa

  • Size

    106.5MB

  • Sample

    241110-w46fga1rby

  • MD5

    6d083b1c3a3d04a0b3800dae4d1c27cc

  • SHA1

    d525f230238d594d6f23fd759630f27c7994aa12

  • SHA256

    2155f026ca5eb2523bd51c7d2671ce2b16b6ae0c45d6f33fd0b911c50144fbd1

  • SHA512

    f2551d980f7770f064856b21e6a77de33aa7093cb366213e5914a2d3ebfbf15e6b856d1f915dd21252cde1f762549cd0f891e9f083ef068fb2a5eb64305cfcf5

  • SSDEEP

    3145728:n9UoVNIp2U6TDIGK6AmlPCH6/NaF7VT51kKq0nI6JmP+0Oxsl+tX:n9fbA2U6TnJjl3NaFyDSm8FX

Malware Config

Targets

    • Target

      Payload/Roblox.app/AppIcon [email protected]

    • Size

      6KB

    • MD5

      2765315a048b2e008ca9cf11ccb79189

    • SHA1

      b985fcdda4b18940bb45a97a83d7daf72f490aae

    • SHA256

      bcd02f2f982ba38179f7b2f51d5b90de71f07a14b741c3a32f2d416d76f378b0

    • SHA512

      0abc6a757a0ab2883b5aaf16000c8f29c9a3e5fa3d1e441d880dbe59eb87d2447185689c228d150d8718d70a0f64f364532a5af30cedbf2027c85350feaab303

    • SSDEEP

      192:uaBeUgjvqx/V1ucN6eelTo3bXnpoRGweJ6xbNqlYAxjhUumD:Lkm0cNclT0b5oRIYKrRulD

    Score
    1/10
    • Target

      Payload/Roblox.app/Frameworks/AppleWare.dylib

    • Size

      4.2MB

    • MD5

      523520459d4ed8bb2bde9c94898f49b4

    • SHA1

      b83d4d914b2c9f0d18a083d5ce23dee616c1bdbf

    • SHA256

      90874de6bcfa8633bebfaf3dfbdcb983bbca24168ec4ab23af6298b6362e59d4

    • SHA512

      747b66393357c0428cf36b5e711580bab9d70110c4d40a19b0d1a26db517781096236b6d57311ef61bcdd55be8407fe540e0498bc4199d85d6c1930a618c8edb

    • SSDEEP

      98304:4EkzP2pWnrVt71+DK7rdFVGK6BYA2osKs2il:e6BY0Il

    Score
    1/10
    • Target

      Payload/Roblox.app/Frameworks/RobloxLib.framework/content/configs/PerformanceConfigs/rofiler.js

    • Size

      210KB

    • MD5

      07ab30a350117c1198083e720ff98dfa

    • SHA1

      6c896dae31f1ad1ceb31f8a820a33c65574158cd

    • SHA256

      de823a514ec25fcb15476807bc45c8b3dd4bf936a6ff2cfd5f65968482e6e78f

    • SHA512

      e22637a8fbbd8552e55216040b89b65c6dda025730c0b0802e0002d96caf8a9fa4ad59dad54f72d18e497481c193eb46e5ca7b663c975f53e4c03833ebc51263

    • SSDEEP

      6144:Ilwh0ev/upwHZXpEu/R4ukvK4KBmKm+qa1C:dupwHZXpECR4ukvKU

    Score
    3/10
    • Target

      Payload/Roblox.app/Frameworks/RobloxLib.framework/content/configs/PerformanceConfigs/rofiler.tools.js

    • Size

      373KB

    • MD5

      54a1336f38dab0c73c7acf1bbad5bdd3

    • SHA1

      a654d84f239c5620547b01e93db0b2ed9f07e5d9

    • SHA256

      28d897c58d03b89e05e524b2a388c6067d55546cc595463a4f0614fa2b528a45

    • SHA512

      9934662353190eee0c6a4b13f4047ad801cd95f81a72e7415d95d8b99462ca797f93e5842d10ea254293b0f9dfc7d999e48112ae81a94e05973c22df411c261c

    • SSDEEP

      6144:FuR+nrSZdcaQ1gU2raPL+OACi1YzeZGrc1Olib9IzppVeGOka3lqBK3CQKD:M0rSoaQDEqN1iZ4pyGatU

    Score
    3/10
    • Target

      Payload/Roblox.app/FriendFinderDisclaimer.html

    • Size

      536B

    • MD5

      63bdf81a2a07b3cd82ad59d57c53f0ac

    • SHA1

      f76b14b63b5e6920e8bbf8350d77c2564c86d123

    • SHA256

      08a234c0b316ada2f0f68bad4704d0e24d91df0274ddf894c4162686c530f32b

    • SHA512

      51cfda4d0aff1ace8818046c901b1b5d02f985a916a64ca00379c322209d01f8d69006b4889e735aef653b37646a57e5e841335700ae7ee6565c1935bc2da9e2

    Score
    3/10
    • Target

      Payload/Roblox.app/PlugIns/RBNotificationServiceExtension.appex/RBNotificationServiceExtension

    • Size

      89KB

    • MD5

      ae920a5392d39b4b24d8243fef609a0b

    • SHA1

      c6162d204ade0dbf6334ad7eee3189ccbdc16129

    • SHA256

      2c96f9e23e9392465d4a34c3e0073f114f0d3bda11b56fb30bbc337f94f61c41

    • SHA512

      e7600db2a1578999146991a2b62ce13571210e2b77325280624424a49aba7184806d5d00b306fc9e76f81fc9d5ad0e0f7c6329aaa1b4c39c96c5c3f7cf3b7605

    • SSDEEP

      1536:NT58gBttp5H2P78Ju/Td32lXdMNQ78bb+:52ThIMNQ7w

    Score
    1/10
    • Target

      Payload/Roblox.app/Roblox

    • Size

      2.7MB

    • MD5

      b12c875170cd8e703d56846bc4d40dc8

    • SHA1

      967abba4f96f89a97fa4253172fa9f96d7d63d7d

    • SHA256

      b031659faf0582bc3b89df78bdfc467dbef469ef6ef61984a6ffdb168ad3f325

    • SHA512

      162df82f5553bd72c6c4ce238b0c1a27f9f8bed6e317d4859ccc5ffc30684657713a856159c75f55a9be70a344fd88d8ba5033978d23ba17d6dbb2f8e30cf8a1

    • SSDEEP

      49152:MW7EzjGqFhO4tWgkq8a7R/oecKk/qJL6j:MW7EzjjFh/tWS8a5oecK6j

    Score
    1/10
    • Target

      Payload/Roblox.app/[email protected]

    • Size

      127B

    • MD5

      398b274e3939db8a0d4be5a4d4cdfc3e

    • SHA1

      908e8dc680328e1a006ca3deb77a91263044f560

    • SHA256

      c47a38f06728c46345110a9a39839f584a313619e0468026fdbeec66cccc43c9

    • SHA512

      54d49470988c27c192e1d6272076d0c6256810b25461b34c135c6b97e1447b13946d3039b8120575d4ebeebb449354183838fd729846732dd24ead8c37a13a8d

    Score
    3/10
    • Target

      Payload/Roblox.app/SignUpDisclamer.html

    • Size

      424B

    • MD5

      960583587ea2d6037d5b4356f7331c6f

    • SHA1

      6d7fc169e7152b07c15e93c58470eef004c906bd

    • SHA256

      59cbe450c4a6c3476d4fcac6cc886d54fd5168fac6f8f057fa571fde69752253

    • SHA512

      1cf14f386a5ee4d29254769f3f9f32e9683a5074fd9864a15487195ba89368371bf47ee59f9a9e28cd005992c15207b8b534af8f08541941dca4361c7a1e168d

    Score
    3/10
    • Target

      Payload/Roblox.app/SignUpDisclamerTencent.html

    • Size

      423B

    • MD5

      0098f9c90144901c99cbe09f740e3082

    • SHA1

      2243fca1d0b175d7e5d8884d8f1ba50c45120d25

    • SHA256

      cbd4803907ea1d37a100a4e1fb4971cd540250db6e5ccc34e347dbf1bb8f40e0

    • SHA512

      e214e8a561b7257ec794b8bc8b5de7a23a1aa4bc4f6b9f194d46cb6601fdd2be3f2f09a85d0455c8cde7f5a62a2d8fc1e195217784936453f72e069de024405f

    Score
    3/10
    • Target

      Payload/Roblox.app/TwoStepCodeHelp.html

    • Size

      424B

    • MD5

      a017fc71eada73bab72794020caf5cd2

    • SHA1

      3c1a126fb1c9c880e96332f1815d36c6dea208b6

    • SHA256

      534fd38fef9d373ccd78de6d28d5227e17a01d6040bcd0da45d0651e9549acee

    • SHA512

      8684ffe27a881a590d53bacea11c58678414d2306c06fbbc2c597ded5e3dbcc4f00313033b3facdcdae1ff4f8aa9c016d3365fa9c7eaf5cc2e9da8646f9dff9d

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks