Overview

overview

7

Static

static

1

deltaruine...mo.rar

windows7-x64

3

deltaruine...mo.rar

windows10-2004-x64

3

Deltaruine...ED.exe

windows7-x64

1

Deltaruine...ED.exe

windows10-2004-x64

1

Deltaruine...ff.ogg

windows7-x64

1

Deltaruine...ff.ogg

windows10-2004-x64

7

Deltaruine...ff.ogg

windows7-x64

1

Deltaruine...ff.ogg

windows10-2004-x64

7

Deltaruine...g1.ogg

windows7-x64

1

Deltaruine...g1.ogg

windows10-2004-x64

7

Deltaruine...g2.ogg

windows7-x64

1

Deltaruine...g2.ogg

windows10-2004-x64

7

Deltaruine...or.ogg

windows7-x64

1

Deltaruine...or.ogg

windows10-2004-x64

7

Deltaruine...is.ogg

windows7-x64

1

Deltaruine...is.ogg

windows10-2004-x64

7

Deltaruine...in.ogg

windows7-x64

1

Deltaruine...in.ogg

windows10-2004-x64

7

Deltaruine...h1.ogg

windows7-x64

1

Deltaruine...h1.ogg

windows10-2004-x64

7

Deltaruine...ed.ogg

windows7-x64

1

Deltaruine...ed.ogg

windows10-2004-x64

7

Deltaruine...aw.ogg

windows7-x64

1

Deltaruine...aw.ogg

windows10-2004-x64

7

Deltaruine...am.ogg

windows7-x64

1

Deltaruine...am.ogg

windows10-2004-x64

7

Deltaruine...am.ogg

windows7-x64

1

Deltaruine...am.ogg

windows10-2004-x64

7

Deltaruine...xp.ogg

windows7-x64

1

Deltaruine...xp.ogg

windows10-2004-x64

7

Deltaruine...g1.ogg

windows7-x64

1

Deltaruine...g1.ogg

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    deltaruined-ch2-demo.rar

  • Size

    218.4MB

  • Sample

    230325-wk4grsdg89

  • MD5

    5648912959330ff07a8dfe2719141f22

  • SHA1

    487aa3b6cb303114b0b2cdfd8bfbf2c9bc4607c0

  • SHA256

    733dab20e36a68550345fa4ad85e8944f519f3de4d150ab3e6b529038e862ecd

  • SHA512

    037baea8b1a63d6a9b64775d16fa05e642865a0855df79c4d5a4ff49d3f4fe27e7615dc9a98a3b0b72046e75a3554e2161386bbc0e102143addc2c392bdd6004

  • SSDEEP

    6291456:jACcExv9pA+h9j1HMcBZHq/AkXJZaWtY/T28R4kD:jNpxv5hFHC9JZJt66S

Score
7/10

Malware Config

Targets

    • Target

      deltaruined-ch2-demo.rar

    • Size

      218.4MB

    • MD5

      5648912959330ff07a8dfe2719141f22

    • SHA1

      487aa3b6cb303114b0b2cdfd8bfbf2c9bc4607c0

    • SHA256

      733dab20e36a68550345fa4ad85e8944f519f3de4d150ab3e6b529038e862ecd

    • SHA512

      037baea8b1a63d6a9b64775d16fa05e642865a0855df79c4d5a4ff49d3f4fe27e7615dc9a98a3b0b72046e75a3554e2161386bbc0e102143addc2c392bdd6004

    • SSDEEP

      6291456:jACcExv9pA+h9j1HMcBZHq/AkXJZaWtY/T28R4kD:jNpxv5hFHC9JZJt66S

    Score
    3/10
    behavioral1behavioral2

    • Target

      Deltaruined chapter 2 official release/DELTARUINED.exe

    • Size

      4.8MB

    • MD5

      dcfb86f7a80d9906bbbafa1b2c224848

    • SHA1

      22820438ac24af6a29c5aae37d834d41da7c488c

    • SHA256

      486503e2a72bf3294aafb013dd23e5a87141b766467c3f833e054a17d69f42c6

    • SHA512

      00430fa94e519ca4fa38c57c479e254e6aef62292b73e72c760f9ae03b433a529351f0c44131ba22ed584137be52bd86f6e972eceec9d2931be622716d99c788

    • SSDEEP

      98304:MdR/suStCl52Wvqq6dASmmAMa+n7iOh2TWzvXtX69IHOJdMYDcAVj8:Md1wCl52Wvqq6dASmmAMa+n71h2TC/tr

    Score
    1/10
    behavioral3behavioral4

    • Target

      Deltaruined chapter 2 official release/snd_tension_buff.ogg

    • Size

      23KB

    • MD5

      a0b877c13c202d4bb3fc7b2ea40ce504

    • SHA1

      f6e66df511d8f62dd69da7d7f8e1e90faef86258

    • SHA256

      9cd5b4765a6a69cf0ff8d731c06cd8035e22adb4ee9f4256c85ecc2f7417b966

    • SHA512

      80bda423504b361e13a9f576548dfa1ff968856686a658be5ac5260bcf62181351603591009c5db8f7813b4ab5201766c2e99835a12580104828295fb137f54c

    • SSDEEP

      384:li+Oonvn8yg/c21jS6OQBGZDUJUAiuKyl17ispAOW0zUSsp:3ZniUJP+yD0UAv3iBOMp

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral5behavioral6

    • Target

      Deltaruined chapter 2 official release/snd_tension_debuff.ogg

    • Size

      23KB

    • MD5

      a0b877c13c202d4bb3fc7b2ea40ce504

    • SHA1

      f6e66df511d8f62dd69da7d7f8e1e90faef86258

    • SHA256

      9cd5b4765a6a69cf0ff8d731c06cd8035e22adb4ee9f4256c85ecc2f7417b966

    • SHA512

      80bda423504b361e13a9f576548dfa1ff968856686a658be5ac5260bcf62181351603591009c5db8f7813b4ab5201766c2e99835a12580104828295fb137f54c

    • SSDEEP

      384:li+Oonvn8yg/c21jS6OQBGZDUJUAiuKyl17ispAOW0zUSsp:3ZniUJP+yD0UAv3iBOMp

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral7behavioral8

    • Target

      Deltaruined chapter 2 official release/snd_turtlesing1.ogg

    • Size

      153KB

    • MD5

      833e75a2441cfc102cae608afdbebb62

    • SHA1

      5ad7b8403ea9466c589df9bf115725e37df0ac5e

    • SHA256

      b162c43f7de1c6e5a8a53f4a935dc1e2212be50fe29027b6934aee94f4324631

    • SHA512

      42239ab4a748e42477c85e59867467c385e04135beef840e296ed5d6c29837e141e7526055cae3f0cf93d8a11dc2c7c45f4ab7c9044eb5fc3144f4d717297142

    • SSDEEP

      3072:lyVb2dsWglSzMGvqjXliEXW3cNt9z2B5Hyeq0CFDD+i:EVbGQ7j3WMNt9SBG0CFDD+i

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral10behavioral9

    • Target

      Deltaruined chapter 2 official release/snd_turtlesing2.ogg

    • Size

      149KB

    • MD5

      94d091ec5c02571fd4665534d640755b

    • SHA1

      bd1435f7df33ba112543192339eb0edf27005e35

    • SHA256

      325e53e10b5c6a61c43387648ea2a0775881f64b3418ad60742789a04592abb2

    • SHA512

      8bc384cafcfd2af74b4686f713daa60058181627e268baff249840764d60f6abd0de82c6544cfc9c869b2143bdc86075655aad310ebd5710760c6f15a7140d39

    • SSDEEP

      3072:GliOIkJMg/p9i5UzBisqCaDCyzgpN6rc8txCjXrl/blPq:Gl3ftk5M9GCKEmOtbo

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral11behavioral12

    • Target

      Deltaruined chapter 2 official release/snd_txtdirector.ogg

    • Size

      4KB

    • MD5

      8963f3bc2f6b3c312bd7df22a06c8b92

    • SHA1

      e04dc7063c273c64f409a3dcb0bf7585421eac62

    • SHA256

      5203a684a9e55e940cbda04aa265a74aa5176bdced1ab7a8c724e2bf2cbc328e

    • SHA512

      7b686c1f0e08d61630546b56657db8a3783738d65cd051dd715c6982d92320c192859940e8287f090f55c2363ab5a5bf3a435ea7a27e0ad96a7b218a80b83f1d

    • SSDEEP

      96:wZIzOrVko1BJoQgbOkyGUsekENPPIHbSB1R6JKUH0F3J:QtDJo+OFSt73v

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral13behavioral14

    • Target

      Deltaruined chapter 2 official release/snd_txtkris.ogg

    • Size

      6KB

    • MD5

      82c0d1038e9a3a623fd4c329eb2e8669

    • SHA1

      27ca490c5deb65a84fe461ec962b07cb68a133f6

    • SHA256

      c8fdad57feee996554287c26691b0a66f6e747d507a729a6cfc82f331e7d4f70

    • SHA512

      c935ea57190e73748f1bc6c22f7a72f6ec03746728d4b78ff89e5bbe570a8e57383976c1d000da81a9a9b38f12f219ff2c453dedbda0a353ab8a0db3cbdc2653

    • SSDEEP

      96:RY32bBoqxPmBl8YE/WJhwupW3ESVh0YxRp2xPJPPPPPPPPPPPPWxjvf3XtPBTF0x:CGttxOrUOJmD0Sz0Yl26jXeK8UGZ

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral15behavioral16

    • Target

      Deltaruined chapter 2 official release/snd_usefountain.ogg

    • Size

      109KB

    • MD5

      d69b08e2917175936e148719397a6d7d

    • SHA1

      e49ecf54f9536813d6041b47538b2aed0d5ae4ba

    • SHA256

      f1aa3197d0ee44afe3c58fb72dc9daf18c2a92abeb9e5cb0b11bca49445fbc3e

    • SHA512

      610f29188e401bb5dee9107be7a852eb078811a2b674f4e6df09b7b1e920c889360659a7697115edc63f2365628ed1eed16bfc65fc911cb764511b76bba9d769

    • SSDEEP

      3072:65CVS8r8TmbmvsY/XoqDovFMaS9Y+EHDiK9aDJ:65CVS8YTmyvsQoq8vDS9iDl9w

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral17behavioral18

    • Target

      Deltaruined chapter 2 official release/snd_usefountain_ch1.ogg

    • Size

      99KB

    • MD5

      91732a57f019c6beda4b7ade0a555f8e

    • SHA1

      d89a8ab773fab58f43ea160e86e8bf86ee31fcbd

    • SHA256

      62581259c63876700fbd339b0d7ba49aa7a39a6b74ba49dbbb341e48d96c5018

    • SHA512

      bd9e59e68f5fa03d6b91d3f72b0870fd30b761fd4e95478a72eea1a3b2c903a7cc402fb29c926a24f705befed23373f476c757bb257a6062e196d318efcb76ea

    • SSDEEP

      3072:37M+B/p/7I8cjOQMyPbDIXmndA9+8/tgXUL:TB/xmyQJzDIXOAFL

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral19behavioral20

    • Target

      Deltaruined chapter 2 official release/snd_vaporized.ogg

    • Size

      19KB

    • MD5

      f4fd6dbd092f5fcdc4fa2a8ce5c9b80e

    • SHA1

      71a8356bc7bb9c37b14ad68b69bfb50c491c48aa

    • SHA256

      f90341cf812f63b14938c3c5341e0ce03b75f6bb7abe408ab1384262958d26e9

    • SHA512

      0d58551707241a45a5e01d5c111f698fdc9d2a5f602e01017348a9a4345e841bbed8e6bcd788bc3c5a3d62011b19a0ac8ea2a55bd8774d16294f1d081191a526

    • SSDEEP

      384:mi+OoAqLgd0Z0HUyDiXVnB6DYXNdh86BPsRq2jiCnzzYz/gKXzCs7L:CZrVZ0HliXVnVNTXl2RnXsFXzlL

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral21behavioral22

    • Target

      Deltaruined chapter 2 official release/snd_waw.ogg

    • Size

      16KB

    • MD5

      5d9f36c90b4442e86685fda82e93b7d6

    • SHA1

      84aea06f09e5f8632cd492a9a25b57ded56acdb1

    • SHA256

      8c1a40db26a06da962f33e4b8bde39b875c6e26d267cf1104de55a3db72de9e5

    • SHA512

      2731580fa54857f269372f839c788a6370c4d8adfefad3218d4ff18afe1bf0e9bf5c43d19a252e343eb6d84df95be2894b43a2999f8f321779cbd8147ccdc858

    • SSDEEP

      384:kwTNMlfm6Jfv6g8UBDAPqCO1v9zxihPRlhq:D6piEqPq959zxirlk

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral23behavioral24

    • Target

      Deltaruined chapter 2 official release/snd_weirdscream.ogg

    • Size

      69KB

    • MD5

      efaa8f14fa47fc29c633cd0bb8458f6e

    • SHA1

      094a6dc078b9a76facd91934754c16abd42670a0

    • SHA256

      1a456a5dfdbb55c88b3821af5547a7500419417526e5981d686fc269d0858bed

    • SHA512

      0340ce7baf9ae85e0db1bee34796bb24db59b45d3036dba03b7c7f47191ecc2f9d7ef79578cd3eecc36a18baa95ef3efa64e05dfd31cc4076ef29c53c2359552

    • SSDEEP

      1536:vZKCd51XZ2AEB9S8AtqzMi8r1Bhzi1WXZL+nyThw:0Cd51J2PBA6MXVusJhw

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral25behavioral26

    • Target

      Deltaruined chapter 2 official release/snd_willyscream.ogg

    • Size

      10KB

    • MD5

      185944fb5f3cc97726d5067d09b02478

    • SHA1

      63d129f5e1bf62b08c68815757c813970d4d9935

    • SHA256

      a0475417fd69dffe75836e5fccdb683206a5684f4297863078ce886b26f24f07

    • SHA512

      ef8ccafe8d857943dc366e782178636f3a03548ad796d0b7bace5478c8bb514f18cf3b0ca6d04d280d9114b8a95094e8e9ad86cac2e0abf43ab7bd20ea1fcdbc

    • SSDEEP

      192:5BzDJo+OFSeaBXoAdMZXiP9M4uZswKE7wv9apXWKBnjMw3D8OtX38cfK:zi+OHaRHd4iP9YDh3D8Otn8IK

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral27behavioral28

    • Target

      Deltaruined chapter 2 official release/snd_windowsxp.ogg

    • Size

      51KB

    • MD5

      0594fe4a425383cb23f41f3995c819a6

    • SHA1

      74e7264ebfe292f828f20f345f180681c88d7105

    • SHA256

      34b696a4afacfb2911e2a2a84311f714e1dbab27fe650b799e7bb82405f7076a

    • SHA512

      652f5fd78e45ae8be33f287d27ce84b3509cb726f47b64fc4b28cd4659e6ea8812e0f49a498f25a46dd3ae44a3d4916b0831a24e678a09ea724edeffef3d1b6d

    • SSDEEP

      1536:5m19eNAosTcuOUkvQ3AW9d+cxUITCBZqMa:5o/cD9W7FxUITqZqMa

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral29behavioral30

    • Target

      Deltaruined chapter 2 official release/snd_wngdng1.ogg

    • Size

      3KB

    • MD5

      a4e8df3fb33f9548db192db12c67cba4

    • SHA1

      67e8250b31181c2f1b9bd268603db31911b87f3c

    • SHA256

      050daf8b5b24712aa28aee579eb7773192da8b8311fcdd4e95644c3aa861453e

    • SHA512

      5714bf962f4e538d74a8d13ff6bad763ca58dbca71843b48cc84c31b673417b4886b327856fe172f141468e9788727821373502a73c9b4ab03447a87e83d77f7

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral31behavioral32

MITRE ATT&CK Enterprise v6

Tasks