'
metaflows logo
Category Started On Completed On Duration Cuckoo Version
FILE 2017-10-28 12:48:34.998444 2017-10-28 12:49:00.203963 25 seconds 2.0-dev
Machine Label Manager Started On Shutdown On
win7cuckoo win7 Clone 1 VirtualBox 2017-10-28 12:48:35 2017-10-28 12:48:59

Errors

File Details

File name RobloxPlayerBeta.exe
File size 10485775 bytes
File type PE32 executable (GUI) Intel 80386, for MS Windows
CRC32 2F14FD83
MD5 4b52acb68fb582e741d9a0c4956207df
SHA1 fda07b7f80a3e6227fc67dcd45bea832eac0eba1
SHA256 0bf13a546de795c5d693eb8c4665708fb7c9749f2ba4bbe0e997fe1b65d778cc
SHA512 0f368f1fa310a2e9688b572cea0959a7f60a75af86f770faf8d6abf62c2dddc55ae074e639f6a7090ca52cd6c5825bb4469f2c9e7fe3e0edcf1e8fecfa83fdda
Ssdeep None
PEiD None matched
Yara
  • GenerateTLSClientHelloPacket_Test ()
VirusTotal File not found on VirusTotal

MetaFlows Scores

Metaflows Analysis Results (Signatures=50, Anomalies=0, PEiD=0, Yara=2, VT[1509209351]=0): Snort Events=0, AV Events=0
Total Score=50

Signatures

pe_features details
packer_vmprotect details

Screenshots

No screenshots available.

Static Analysis

Sections

Strings

Dropped Files

Nothing to display.

Network Analysis

Hosts Involved

DNS Requests

Behavior Summary

Processes

registry filesystem process services network synchronization

C:\Windows\system32\lsass.exe PID: 480, Parent PID: 384

Volatility

Nothing to display.