robloxplayerlauncher.exe

Roblox Bootstrapper

ROBLOX Corporation

This file is installed with the program ROBLOX Player. The file has been seen being downloaded from dla.uloz.to and multiple other hosts.
Publisher:
ROBLOX Corporation  (signed and verified)

Product:
Roblox Bootstrapper

Description:
Roblox

Version:
1, 6, 3, 422

MD5:
1bff52922815a6025a8dcdda0c93dedf

SHA-1:
2e5dd2ccab34afb167ac19f455455fdcabf1dfc4

SHA-256:
6cdeeb2d00022706f88d5c623eda93a4705fee6750cefd1789bb417419826c39

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/15/2024 6:19:15 PM UTC  (today)

Scan engine
Detection
Engine version

nProtect
Trojan/W32.Agent.525240
13.10.21.03

File size:
530.4 KB (543,088 bytes)

Product version:
1, 6, 3, 0

Copyright:
(C) 2012 ROBLOX Corporation. All rights reserved.

Original file name:
Roblox.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\roblox\versions\version-2c68f7c30e1b4888\robloxplayerlauncher.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
8/16/2012 6:00:00 PM

Valid to:
9/9/2015 5:59:59 PM

Subject:
CN=ROBLOX Corporation, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=ROBLOX Corporation, L=Menlo Park, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3C1285BDA72D822937E75457679A29BD

File PE Metadata
Compilation timestamp:
1/20/2014 7:02:18 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:hVLP3QV7E4IEhuatjJ/7NCest1EmHoWTIk9Bf:hVDQKsfAestXzT3Bf

Entry address:
0x35F03

Entry point:
E8, 09, A9, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 56, 8B, 75, 08, 85, F6, 7C, 09, E8, 88, A9, 00, 00, 3B, 30, 7C, 07, E8, 7F, A9, 00, 00, 8B, 30, E8, 7E, A9, 00, 00, 8B, 04, B0, 5E, 5D, C3, 8B, FF, 55, 8B, EC, 53, 56, E8, C1, 65, 00, 00, 8B, F0, 33, DB, 3B, F3, 75, 07, B8, F0, 4D, 45, 00, EB, 4D, 57, BF, 86, 00, 00, 00, 39, 5E, 24, 75, 18, 6A, 01, 57, E8, F7, 40, 00, 00, 59, 59, 89, 46, 24, 3B, C3, 75, 07, B8, F0, 4D, 45, 00, EB, 29, FF, 75, 08, 8B, 76, 24, E8, 8F, FF, FF, FF, 50, 57, 56, E8, B5...
 
[+]

Entropy:
6.3803

Code size:
332 KB (339,968 bytes)

The file robloxplayerlauncher.exe has been discovered within the following program.

ROBLOX Player  by ROBLOX Corporation
Roblox is a massively multiplayer online game in which players create virtual worlds. Players can customize their virtual characters with thousands of different hats, head shapes, body shapes, clothing, and gear.
www.roblox.com
1% remove it
 
Powered by Should I Remove It?

The file robloxplayerlauncher.exe has been seen being distributed by the following 9 URLs.

http://dla.uloz.to/Ps;Hs;fid=44963145;cid=876585047;rid=1064342793;up=0;uip=88.212.42.104;tm=1474302877;ut=f;aff=ulozto.sk;did=ulozto-sk;He;ch=13536d497d884692f6c6626a7d80005a;Pe/.../roblox-original-1-5-2-exe/.../roblox-original-1-5-2-exe?bD&c=876585047&De

Scan robloxplayerlauncher.exe - Powered by Reason Core Security