Overview
overview
3Static
static
1Payload/Ro...2x.png
windows7-x64
1Payload/Ro...2x.png
windows10-2004-x64
1Payload/Ro....dylib
macos-10.15-amd64
1Payload/Ro...ler.js
windows7-x64
3Payload/Ro...ler.js
windows10-2004-x64
3Payload/Ro...ols.js
windows7-x64
3Payload/Ro...ols.js
windows10-2004-x64
3Payload/Ro...r.html
windows7-x64
3Payload/Ro...r.html
windows10-2004-x64
3Payload/Ro...ension
macos-10.15-amd64
1Payload/Ro...Roblox
macos-10.15-amd64
1Payload/Ro...2x.png
windows7-x64
3Payload/Ro...2x.png
windows10-2004-x64
3Payload/Ro...r.html
windows7-x64
3Payload/Ro...r.html
windows10-2004-x64
3Payload/Ro...t.html
windows7-x64
3Payload/Ro...t.html
windows10-2004-x64
3Payload/Ro...p.html
windows7-x64
3Payload/Ro...p.html
windows10-2004-x64
3General
-
Target
AppleWare-1.0.2.ipa
-
Size
106.5MB
-
Sample
241110-w46fga1rby
-
MD5
6d083b1c3a3d04a0b3800dae4d1c27cc
-
SHA1
d525f230238d594d6f23fd759630f27c7994aa12
-
SHA256
2155f026ca5eb2523bd51c7d2671ce2b16b6ae0c45d6f33fd0b911c50144fbd1
-
SHA512
f2551d980f7770f064856b21e6a77de33aa7093cb366213e5914a2d3ebfbf15e6b856d1f915dd21252cde1f762549cd0f891e9f083ef068fb2a5eb64305cfcf5
-
SSDEEP
3145728:n9UoVNIp2U6TDIGK6AmlPCH6/NaF7VT51kKq0nI6JmP+0Oxsl+tX:n9fbA2U6TnJjl3NaFyDSm8FX
Static task
static1
Behavioral task
behavioral1
Sample
Payload/Roblox.app/AppIcon [email protected]
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
Payload/Roblox.app/AppIcon [email protected]
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
Payload/Roblox.app/Frameworks/AppleWare.dylib
Resource
macos-20241101-en
Behavioral task
behavioral4
Sample
Payload/Roblox.app/Frameworks/RobloxLib.framework/content/configs/PerformanceConfigs/rofiler.js
Resource
win7-20240708-en
Behavioral task
behavioral5
Sample
Payload/Roblox.app/Frameworks/RobloxLib.framework/content/configs/PerformanceConfigs/rofiler.js
Resource
win10v2004-20241007-en
Behavioral task
behavioral6
Sample
Payload/Roblox.app/Frameworks/RobloxLib.framework/content/configs/PerformanceConfigs/rofiler.tools.js
Resource
win7-20240903-en
Behavioral task
behavioral7
Sample
Payload/Roblox.app/Frameworks/RobloxLib.framework/content/configs/PerformanceConfigs/rofiler.tools.js
Resource
win10v2004-20241007-en
Behavioral task
behavioral8
Sample
Payload/Roblox.app/FriendFinderDisclaimer.html
Resource
win7-20240903-en
Behavioral task
behavioral9
Sample
Payload/Roblox.app/FriendFinderDisclaimer.html
Resource
win10v2004-20241007-en
Behavioral task
behavioral10
Sample
Payload/Roblox.app/PlugIns/RBNotificationServiceExtension.appex/RBNotificationServiceExtension
Resource
macos-20241106-en
Behavioral task
behavioral11
Sample
Payload/Roblox.app/Roblox
Resource
macos-20241106-en
Behavioral task
behavioral13
Sample
Payload/Roblox.app/[email protected]
Resource
win10v2004-20241007-en
Behavioral task
behavioral14
Sample
Payload/Roblox.app/SignUpDisclamer.html
Resource
win7-20240903-en
Behavioral task
behavioral15
Sample
Payload/Roblox.app/SignUpDisclamer.html
Resource
win10v2004-20241007-en
Behavioral task
behavioral16
Sample
Payload/Roblox.app/SignUpDisclamerTencent.html
Resource
win7-20241023-en
Behavioral task
behavioral17
Sample
Payload/Roblox.app/SignUpDisclamerTencent.html
Resource
win10v2004-20241007-en
Behavioral task
behavioral18
Sample
Payload/Roblox.app/TwoStepCodeHelp.html
Resource
win7-20240903-en
Behavioral task
behavioral19
Sample
Payload/Roblox.app/TwoStepCodeHelp.html
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
Payload/Roblox.app/AppIcon [email protected]
-
Size
6KB
-
MD5
2765315a048b2e008ca9cf11ccb79189
-
SHA1
b985fcdda4b18940bb45a97a83d7daf72f490aae
-
SHA256
bcd02f2f982ba38179f7b2f51d5b90de71f07a14b741c3a32f2d416d76f378b0
-
SHA512
0abc6a757a0ab2883b5aaf16000c8f29c9a3e5fa3d1e441d880dbe59eb87d2447185689c228d150d8718d70a0f64f364532a5af30cedbf2027c85350feaab303
-
SSDEEP
192:uaBeUgjvqx/V1ucN6eelTo3bXnpoRGweJ6xbNqlYAxjhUumD:Lkm0cNclT0b5oRIYKrRulD
Score1/10 -
-
-
Target
Payload/Roblox.app/Frameworks/AppleWare.dylib
-
Size
4.2MB
-
MD5
523520459d4ed8bb2bde9c94898f49b4
-
SHA1
b83d4d914b2c9f0d18a083d5ce23dee616c1bdbf
-
SHA256
90874de6bcfa8633bebfaf3dfbdcb983bbca24168ec4ab23af6298b6362e59d4
-
SHA512
747b66393357c0428cf36b5e711580bab9d70110c4d40a19b0d1a26db517781096236b6d57311ef61bcdd55be8407fe540e0498bc4199d85d6c1930a618c8edb
-
SSDEEP
98304:4EkzP2pWnrVt71+DK7rdFVGK6BYA2osKs2il:e6BY0Il
Score1/10 -
-
-
Target
Payload/Roblox.app/Frameworks/RobloxLib.framework/content/configs/PerformanceConfigs/rofiler.js
-
Size
210KB
-
MD5
07ab30a350117c1198083e720ff98dfa
-
SHA1
6c896dae31f1ad1ceb31f8a820a33c65574158cd
-
SHA256
de823a514ec25fcb15476807bc45c8b3dd4bf936a6ff2cfd5f65968482e6e78f
-
SHA512
e22637a8fbbd8552e55216040b89b65c6dda025730c0b0802e0002d96caf8a9fa4ad59dad54f72d18e497481c193eb46e5ca7b663c975f53e4c03833ebc51263
-
SSDEEP
6144:Ilwh0ev/upwHZXpEu/R4ukvK4KBmKm+qa1C:dupwHZXpECR4ukvKU
Score3/10 -
-
-
Target
Payload/Roblox.app/Frameworks/RobloxLib.framework/content/configs/PerformanceConfigs/rofiler.tools.js
-
Size
373KB
-
MD5
54a1336f38dab0c73c7acf1bbad5bdd3
-
SHA1
a654d84f239c5620547b01e93db0b2ed9f07e5d9
-
SHA256
28d897c58d03b89e05e524b2a388c6067d55546cc595463a4f0614fa2b528a45
-
SHA512
9934662353190eee0c6a4b13f4047ad801cd95f81a72e7415d95d8b99462ca797f93e5842d10ea254293b0f9dfc7d999e48112ae81a94e05973c22df411c261c
-
SSDEEP
6144:FuR+nrSZdcaQ1gU2raPL+OACi1YzeZGrc1Olib9IzppVeGOka3lqBK3CQKD:M0rSoaQDEqN1iZ4pyGatU
Score3/10 -
-
-
Target
Payload/Roblox.app/FriendFinderDisclaimer.html
-
Size
536B
-
MD5
63bdf81a2a07b3cd82ad59d57c53f0ac
-
SHA1
f76b14b63b5e6920e8bbf8350d77c2564c86d123
-
SHA256
08a234c0b316ada2f0f68bad4704d0e24d91df0274ddf894c4162686c530f32b
-
SHA512
51cfda4d0aff1ace8818046c901b1b5d02f985a916a64ca00379c322209d01f8d69006b4889e735aef653b37646a57e5e841335700ae7ee6565c1935bc2da9e2
Score3/10 -
-
-
Target
Payload/Roblox.app/PlugIns/RBNotificationServiceExtension.appex/RBNotificationServiceExtension
-
Size
89KB
-
MD5
ae920a5392d39b4b24d8243fef609a0b
-
SHA1
c6162d204ade0dbf6334ad7eee3189ccbdc16129
-
SHA256
2c96f9e23e9392465d4a34c3e0073f114f0d3bda11b56fb30bbc337f94f61c41
-
SHA512
e7600db2a1578999146991a2b62ce13571210e2b77325280624424a49aba7184806d5d00b306fc9e76f81fc9d5ad0e0f7c6329aaa1b4c39c96c5c3f7cf3b7605
-
SSDEEP
1536:NT58gBttp5H2P78Ju/Td32lXdMNQ78bb+:52ThIMNQ7w
Score1/10 -
-
-
Target
Payload/Roblox.app/Roblox
-
Size
2.7MB
-
MD5
b12c875170cd8e703d56846bc4d40dc8
-
SHA1
967abba4f96f89a97fa4253172fa9f96d7d63d7d
-
SHA256
b031659faf0582bc3b89df78bdfc467dbef469ef6ef61984a6ffdb168ad3f325
-
SHA512
162df82f5553bd72c6c4ce238b0c1a27f9f8bed6e317d4859ccc5ffc30684657713a856159c75f55a9be70a344fd88d8ba5033978d23ba17d6dbb2f8e30cf8a1
-
SSDEEP
49152:MW7EzjGqFhO4tWgkq8a7R/oecKk/qJL6j:MW7EzjjFh/tWS8a5oecK6j
Score1/10 -
-
-
Target
Payload/Roblox.app/[email protected]
-
Size
127B
-
MD5
398b274e3939db8a0d4be5a4d4cdfc3e
-
SHA1
908e8dc680328e1a006ca3deb77a91263044f560
-
SHA256
c47a38f06728c46345110a9a39839f584a313619e0468026fdbeec66cccc43c9
-
SHA512
54d49470988c27c192e1d6272076d0c6256810b25461b34c135c6b97e1447b13946d3039b8120575d4ebeebb449354183838fd729846732dd24ead8c37a13a8d
Score3/10 -
-
-
Target
Payload/Roblox.app/SignUpDisclamer.html
-
Size
424B
-
MD5
960583587ea2d6037d5b4356f7331c6f
-
SHA1
6d7fc169e7152b07c15e93c58470eef004c906bd
-
SHA256
59cbe450c4a6c3476d4fcac6cc886d54fd5168fac6f8f057fa571fde69752253
-
SHA512
1cf14f386a5ee4d29254769f3f9f32e9683a5074fd9864a15487195ba89368371bf47ee59f9a9e28cd005992c15207b8b534af8f08541941dca4361c7a1e168d
Score3/10 -
-
-
Target
Payload/Roblox.app/SignUpDisclamerTencent.html
-
Size
423B
-
MD5
0098f9c90144901c99cbe09f740e3082
-
SHA1
2243fca1d0b175d7e5d8884d8f1ba50c45120d25
-
SHA256
cbd4803907ea1d37a100a4e1fb4971cd540250db6e5ccc34e347dbf1bb8f40e0
-
SHA512
e214e8a561b7257ec794b8bc8b5de7a23a1aa4bc4f6b9f194d46cb6601fdd2be3f2f09a85d0455c8cde7f5a62a2d8fc1e195217784936453f72e069de024405f
Score3/10 -
-
-
Target
Payload/Roblox.app/TwoStepCodeHelp.html
-
Size
424B
-
MD5
a017fc71eada73bab72794020caf5cd2
-
SHA1
3c1a126fb1c9c880e96332f1815d36c6dea208b6
-
SHA256
534fd38fef9d373ccd78de6d28d5227e17a01d6040bcd0da45d0651e9549acee
-
SHA512
8684ffe27a881a590d53bacea11c58678414d2306c06fbbc2c597ded5e3dbcc4f00313033b3facdcdae1ff4f8aa9c016d3365fa9c7eaf5cc2e9da8646f9dff9d
Score3/10 -