7122ca62c18bace81ae0b291ba6df90f1f67f178ca341ba0cc7f52dbd61ab804 | Triage

Analysis

max time kernel
17s
max time network
19s
platform
windows10-ltsc 2021_x64
resource
win10ltsc2021-20250113-en
resource tags

arch:x64arch:x86image:win10ltsc2021-20250113-enlocale:en-usos:windows10-ltsc 2021-x64system
submitted
22/01/2025, 01:55 UTC

Sharing

Report Analysis Logs

General

Target

Blox-Fruits-Script-Roblox/adbdrv/64/devcon.exe
Size

88KB
MD5

5d38f264735116c3f6d7114b18e7e173
SHA1

6635352bbeb16235dd2ecab22ca9122596d3bde2
SHA256

9f08f1ce607877c5292e57da6310e064375d6b5ea9535045b3019a2a7e91a351
SHA512

4c7021d1d9a3b7bbc7bebeb8f9a972db19e1e8f62cdf3f60c985df7855fb06075f3f943137b25483eccec9cb56f1ca12d24176def434c46f103a870694c0a0de
SSDEEP

1536:YP2K0pa0WfEYp9Y/XQhpgnbP212YCJpDhiF4O7WTFyzw:YePOYe4bu1epDh8RWRyzw

Score

1^/10

Malware Config

Signatures

C:\Users\Admin\AppData\Local\Temp\Blox-Fruits-Script-Roblox\adbdrv\64\devcon.exe
"C:\Users\Admin\AppData\Local\Temp\Blox-Fruits-Script-Roblox\adbdrv\64\devcon.exe"
1⤵
PID:3468

Network

DNS

13.86.106.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

13.86.106.20.in-addr.arpa

IN PTR

Response
DNS

17.160.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

17.160.190.20.in-addr.arpa

IN PTR

Response
DNS

188.77.23.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

188.77.23.2.in-addr.arpa

IN PTR

Response

188.77.23.2.in-addr.arpa

IN PTR

a2-23-77-188deploystaticakamaitechnologiescom
DNS

181.129.81.91.in-addr.arpa

Remote address:

8.8.8.8:53

Request

181.129.81.91.in-addr.arpa

IN PTR

Response
DNS

28.118.140.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

28.118.140.52.in-addr.arpa

IN PTR

Response

No results found

8.8.8.8:53

13.86.106.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

13.86.106.20.in-addr.arpa
8.8.8.8:53

17.160.190.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

17.160.190.20.in-addr.arpa
8.8.8.8:53

188.77.23.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

188.77.23.2.in-addr.arpa
8.8.8.8:53

181.129.81.91.in-addr.arpa

dns

72 B
147 B
1
1

DNS Request

181.129.81.91.in-addr.arpa
8.8.8.8:53

28.118.140.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

28.118.140.52.in-addr.arpa

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads