Gridinsoft Logo

RobloxPlayerInstaller.exe Stealer Gen Analysis

Stealer Gen
Updated on 2025-03-29 (25 days ago)
Checked by Online Virus Scanner
Online Virus Checker v.1.0.211.174
DB Version: 2025-03-29 08:01:23

Spy.Win32.Gen.tr

This is a generic detection name used to identify a potentially harmful or suspicious file or program that exhibits characteristics of a Trojan horse. It is malware that disguises itself as a legitimate or benign program but contains malicious code or functions.

File RobloxPlayerInstaller.exe
Checked 2025-03-29 06:25:43
MD5 2a39b191557fe027454094fcb79e4c9f
SHA1 a8c2d42f149ec3d8b8ab2fb38e7b1bac786ca8da
SHA256 1cfa38c4091921ff9231b90989c616f9d73bf8f328a263e9e1621a42b1053201
SHA512 77df1c00cadf139dd4f791555abd927d16ddcc5e696a7760ef5a2901f277997f23b2334fd8b2b50c573567139b3f653afb7a8beef089084e2db7fe4fa10ccafb
Imphash e0d2ee228e9aeb73ba69a2b4d8e31058
File Size 7531408 bytes

Spy.Win32.Gen.tr Removal

Spy.Win32.Gen.tr Removal

Gridinsoft has the capability to identify and eliminate Spy.Win32.Gen.tr without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

File Version Information

CompanyName Roblox Corporation
FileDescription Roblox
FileVersion 1, 6, 0, 6530693
LegalCopyright Copyright © 2020 Roblox Corporation. All rights reserved.
OriginalFilename Roblox.exe
ProductName Roblox Bootstrapper
ProductVersion 1, 6, 0, 6530693
Translation 0x0409 0x04b0

Portable Executable Info

b423ca67aaea047fe3295fc7c4dc1efd
e77261c35382a2126a491c6a691a1197
3cf0a4cccedac0c0
Image Base: 0x00400000
Entry Point: 0x008116f5
Compilation: 1988-11-22 21:59:23
Checksum: 0x007303bd (Actual: 0x007303bd)
OS Version: 6.0
PDB Path: C:\buildAgent\work\ci_deploy_ninja_boot-x86_git\build.ninja\common\vs2019\x86\release\Installer\Windows\RobloxPlayerInstaller.pdb
PEiD: PE32 executable (GUI) Intel 80386, for MS Windows
Sign: OK
Sections: 5
Imports: COMCTL32, gdiplus, WININET, SHELL32, IPHLPAPI, WS2_32, bcrypt, ADVAPI32, CRYPT32, KERNEL32, USER32, GDI32, ole32, SHLWAPI, POWRPROF, WINMM,
Exports: 0
Resources: 75

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00001000 0x0047074a 0x00470800 47f885185b7f5d9f76efe082d09e1786 6.69
.rdata 0x00472000 0x001507ba 0x00150800 9bdc80c8263764900fe4928d2983d32d 6.18
.data 0x005c3000 0x00809870 0x000c7600 65db445a53cac8403257edd9b59b8289 0.89
.rsrc 0x00dcd000 0x0007272c 0x00072800 43d3cf6b3d0c8d32d47a566ccba1a972 7.31
.reloc 0x00e40000 0x00030f38 0x00031000 2c8217427701d3f1e65168497eaac5d4 6.67

Leave a comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware