61885de266edb1d83a73ebf0bdfba7c5aa0bdb9bc22b0e8344cdae9fd5e46c4c

Sharing

Copy URL

Twitter E-mail

General

Target

DELTARUNE multiplayer 22712-2043.zip
Size

146.8MB
Sample

240821-e5hx5atemj
MD5

5c1c65b25d9f4a3209a5465efed5e567
SHA1

816408c9350e114c24b08d96ed48f4cddfa45f58
SHA256

61885de266edb1d83a73ebf0bdfba7c5aa0bdb9bc22b0e8344cdae9fd5e46c4c
SHA512

da3a549ab664f950203ccd84b58c3af5616f05d4f2aeb186c6e47fb86b9ad86ded49ce58fa95c98af4ce1b71d0619ba479beb2455f2604d38f090e366568eef8
SSDEEP

3145728:GzQrJDz3CfnFOfwOXTmaIfcIghd3pcdETjaCIkQal+ViDoR6Q8hNBcqvrH3JZhgK:GkrJa4RqaIUr96dIZIvS+i06rPBcOZAK

Score

7^/10

Malware Config

Targets

- Target
  
  DELTARUNE multiplayer 22712-2043.zip
- Size
  
  146.8MB
- MD5
  
  5c1c65b25d9f4a3209a5465efed5e567
- SHA1
  
  816408c9350e114c24b08d96ed48f4cddfa45f58
- SHA256
  
  61885de266edb1d83a73ebf0bdfba7c5aa0bdb9bc22b0e8344cdae9fd5e46c4c
- SHA512
  
  da3a549ab664f950203ccd84b58c3af5616f05d4f2aeb186c6e47fb86b9ad86ded49ce58fa95c98af4ce1b71d0619ba479beb2455f2604d38f090e366568eef8
- SSDEEP
  
  3145728:GzQrJDz3CfnFOfwOXTmaIfcIghd3pcdETjaCIkQal+ViDoR6Q8hNBcqvrH3JZhgK:GkrJa4RqaIUr96dIZIvS+i06rPBcOZAK
Score

1^/10
behavioral1 behavioral2
- Target
  
  mus/music_guys.ogg
- Size
  
  66KB
- MD5
  
  a056c744d2e1c5480aabc9a7bbbc990f
- SHA1
  
  8a78108857fb168d9e1ef1587193f5c3920abc73
- SHA256
  
  e6663aa133228b9856ac39479408f03b3a5c13b67b29801f8cf102495920e42d
- SHA512
  
  c1c8ab1d9a7ab5197d735a17a5c2b2f7860c933f318da9a1b4d584a6e653b4f19f7c782a9aadc82c002124fb58218b4e6d1058d894fd06949e2d7c0f0431f36d
- SSDEEP
  
  1536:LL9a/Av/xRBoh+SecvzfE2ICttzIs0pYXtbXHu:LB2AnxL/kLfENCtt3Z9ru
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral3 behavioral4
- Target
  
  mus/music_guys_intro.ogg
- Size
  
  73KB
- MD5
  
  1476e98f74ae2587c5ce0a46002be272
- SHA1
  
  9b40dfbc757191bb36011ec5bbae02f3d9965852
- SHA256
  
  c81beb9a29b435d531ebeac1e1746f9d9f14cfedceada7c000342ef85818b6b3
- SHA512
  
  84a9185b539245b90cb370aed381e98ba952375b626e650094fe62f993e7fff03e001d82ebe0003207251578ff73f7b9fcae2c769eb06e47b42cb3515e565b46
- SSDEEP
  
  1536:W3KLhDp+mVT1wg16s8n2xnxfuZnfwruQdbunzr0mIhAcTsqXa7D:W3KLBp+mVT1H8n2iZnYru4bunrOa7D
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral5 behavioral6
- Target
  
  mus/napsta_alarm.ogg
- Size
  
  137KB
- MD5
  
  be2682e04f849f6906e8205121753562
- SHA1
  
  03a89ecd5125d023253281c5444e52e0fbd7afae
- SHA256
  
  8704f23e4c61e7738108e821dbe1756eb3160337b261a068baf2cd292ce4da7c
- SHA512
  
  e4a0db0e3928f476f0ad76cf16e6cc828d77f14cdad291a7e1bd5b5a98be7034df56ed14703b926a4a8ecbe4ca1ffb37d8056aaa7980ac40b90fa82abeda57de
- SSDEEP
  
  3072:drsDYA8sp5ojJatGDHxHcspIak5v9dpgNWR+wFkNnEtY1Xm:JTYpejQtG7Vbpu5vuAy6Ys
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral7 behavioral8
- Target
  
  mus/noelle.ogg
- Size
  
  429KB
- MD5
  
  1ca9c249943d2ef59c9413edba69b28d
- SHA1
  
  790e14268a228c735aa7ea444d97a76cfc8f4238
- SHA256
  
  e88229201c37ca4ce9ca0b9efe3b37a755bb767ad59301f8c4f5f811843e774d
- SHA512
  
  ac24c37821df95614307adc73b7f550fc5a5380343eb2387732c3ebddd70b903870fc084e2601c126ad429b81c9822ead21e546df23416e331f7ad9443942058
- SSDEEP
  
  12288:xklfTJk+quX9NcCedvvfMk1E8dnstz+e9PwAC:Ak+qSNxeNffnsJrDC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral10 behavioral9
- Target
  
  mus/noelle_ferriswheel.ogg
- Size
  
  1.3MB
- MD5
  
  3b3ea55e36bf2377e843d7190e5addb6
- SHA1
  
  2a033f1f2f3c3b665f5ac44b9d62a5e6fcb25efc
- SHA256
  
  ed403f25bf26bb2d6cef15e0fb860894e160622281d3ce1bb26c7b1f21b4d074
- SHA512
  
  63a681f6959c52aba707e7f4f3fcef6df8edc5c75eceeac95382f5a3e9afefa9994e0c97bc2e06dedf1a4d2009c5daada9c2f9e0ac20bd0c35087b32706d7562
- SSDEEP
  
  24576:5GElBh6Wuajk5MDwfLA1SMdJXxq4q7Q+ksLdOBcVy/9Mt2bsmJXf/Cm+Uuf:5GExNOlHE6xABcVFIbdX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral11 behavioral12
- Target
  
  mus/noelle_normal.ogg
- Size
  
  1.1MB
- MD5
  
  e104d7d8c65fd26cf9dccf797f5358a7
- SHA1
  
  18db46043bf9672a47d0c225ad52fea065a951cd
- SHA256
  
  ada7b196658c1949987b63149793d44eda2ec8448a7b79f3a54d07bfe175d700
- SHA512
  
  86de3710dbf5af4d80a1963ead74239e6a9c039b145dcf778157f6b4cf41e6d774648769cb69ca299373240eabf004adb3b7ff2f831f23b3a0f417c6f4683d71
- SSDEEP
  
  24576:w4QEsVzZyIdWw4xXGMkIzsbogYYomt6hxRq+5u:5QEsryyWkMTzngT4M
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral13 behavioral14
- Target
  
  mus/noelle_school.ogg
- Size
  
  430KB
- MD5
  
  d85a77183447fdd6019f77af480a4530
- SHA1
  
  e0e9d48b76594a7ace6fcc47a03b443794fdaebb
- SHA256
  
  a806c14cfbfc1e5847f904e5186bb1942752461a1d09258063f673fb8104f62d
- SHA512
  
  db4e21a3d39ee5eb38fe0b678e3f53d76d93827b294c5db59fe0c85fea0a33342a7358294779ee98a1c77cb16603bdbd67cc6bb9d7f53722fd06c1440a5af73c
- SSDEEP
  
  12288:O57145myw+A1aM6rjay7CDGjahIR8/Bbx5Ouwk/MJ/K:O5djHgYXAk/MJS
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral15 behavioral16
- Target
  
  mus/ocean.ogg
- Size
  
  146KB
- MD5
  
  717bba27166491817c4e51c0b8913495
- SHA1
  
  0ada120157cd8250c800bfd742ac0e4bef003222
- SHA256
  
  0035deea016fe978a5359e6c1f2b17c997e18d716e64e27669cb96d34c3480a2
- SHA512
  
  1c20f7fd1e91f02bf5bea5b9f233fbfa6f6748785399084bfc853d993c6ce821a9bdf7d9066a1ff195fc2f12b4f2386d0406da41bf181aef87d0a59e8e6150dc
- SSDEEP
  
  3072:vMOYK8O3b8fdAv09RIIkkz+/VvVBCiFoKQ25U22D1U62N5kf:5b8S8f5jIIkLUi2KQQVSU6uC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral17 behavioral18
- Target
  
  mus/prejoker.ogg
- Size
  
  1.2MB
- MD5
  
  2c4a53fdbcc000c3fea8b31b4df31de8
- SHA1
  
  7aa4aad5924229064cfc52d82b63dbdd267544d7
- SHA256
  
  921b59b3894054b0b8e98bb6c8122ba5609f2b16aac170a81a89cda7ccd98dc9
- SHA512
  
  8e5344c57e1aa9458178807d73e151ff33a382dc1883e04f30504065777d0ff97dd668a3ea15d560f2355f70929e03d0cb945fa05081026be2cd7485461d4016
- SSDEEP
  
  24576:Q5ePuYO/jPIon0m4lUpisaOyjnopDzUbFgQoQ5sIFTmcx8kjAm8zewAWHJT:zGX/jBnkUp9aOy8xohboTKTmGJwAGF
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral19 behavioral20
- Target
  
  mus/queen.ogg
- Size
  
  669KB
- MD5
  
  c53d19c7fd847ac4a2db457ffb434f6c
- SHA1
  
  019f07edde1e7918a801f7d68d6fb532e2fc819e
- SHA256
  
  c88119118acdc251e70b7702085b02c672bb3bd88e6b8fc84a03a3b30130a229
- SHA512
  
  fea8b8eb73090ce1c13cfe2d46630c30f3f1e468959c8535dbf6c82db42a4a6715ef51b57e5f56afcdf1d4921b8d5c4522e0d56c50034f7b4622df342b6d9aa0
- SSDEEP
  
  12288:AY8H4UbPdZSYjCzqcJ0QAh/Jc7Et656Z3oZ9o6SVG4OeXNvqLs:AYE/dZSOE/ETtacH2CvqLs
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral21 behavioral22
- Target
  
  mus/queen_boss.ogg
- Size
  
  956KB
- MD5
  
  f11149e3284bd3ced3f433545cac773a
- SHA1
  
  f109a942b94573ee31830da4fd34ae9c43ca1be5
- SHA256
  
  887c49c349e90a5a7a3c0b62ddaa8882663ef7df01ddab556b1208c40c1f7177
- SHA512
  
  6203daae281c9b5a3b2357fbf0f4d8037a105d343a162406804764dfe66ff47dbc322cbc07d0ea129eef3df946991e641a92f65b518546c4234d38d2754ef851
- SSDEEP
  
  24576:h934c8SiSzdgZQSUO45comdDMnJeQCEqu/9kIK:D34PF6SUOOZJeQ/hkIK
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral23 behavioral24
- Target
  
  mus/queen_car_radio.ogg
- Size
  
  154KB
- MD5
  
  d4c39720834b782bfe8bf8df1ad41adb
- SHA1
  
  3639c6b907c255902e2123a19efef129cf83ccec
- SHA256
  
  b39ddfb035971e4f4d7d96e670f25b97516df0799eb761f65cfa3e27f0643190
- SHA512
  
  1a0d73ebc6eaead283217414b79584a3ef5c4ad9a2ed234ad47971bfce52688ec911a5d214f1fe7ed0fe9dbaa04428161ad8f65a2dda44e5ac0912945e0079f6
- SSDEEP
  
  3072:iboLox/7Hj9uurLxKQocyKfoLQrHlXV6FUTkJltHQmhWjfI8TB0gKQvU:so4IQPgMTlF6iwJltw4KTB0gK5
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral25 behavioral26
- Target
  
  mus/queen_intro.ogg
- Size
  
  112KB
- MD5
  
  08e53d5b016a575a801bdb9bcbdc5d31
- SHA1
  
  1800a2cfd2b50575ec9fc8418d2acc584033306d
- SHA256
  
  dfa6c5c95cdd4558804f407463ed3da1b16f07b31b2dc5ecf009e2dce6aef6f0
- SHA512
  
  27608f49418fb2e24e9803826cc2101e770c44508f510ea491f2860e730a7301926de77e27884e5e6980743401d7fc2808374a6db9ba107841097037dc41c0ed
- SSDEEP
  
  3072:WBZFCukkS5PQFxKuZphiFedzrxPmJ07Mb/T2GPZV0:WbfTxFPhi8fQT/T2GPZG
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral27 behavioral28
- Target
  
  mus/quiet_autumn.ogg
- Size
  
  693KB
- MD5
  
  fb9c60c59c39d3746b08e912818162b1
- SHA1
  
  6563f7c6e12d4cdafa2bbb28ba5a5d425145c07e
- SHA256
  
  8f5a6526d5b72342ed04de6fe7b68d0067312803d7801024b56876eb4c13a9a8
- SHA512
  
  35780f1d52f7f2ecba34d3aff15cd4d5b80a6649bb76c6fd8226d5d3a579dacc251ec9a2a7f1ddd0ac17e02a781dc38ecda0636004006f58229eae8f0e9eb0e6
- SSDEEP
  
  12288:nnTQM+MMDVuYnQXADZkHElH+lXvpyBjjS5K6V5bBxBijvHBV:nTQEMZuObWmOhGjO5lROHD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral29 behavioral30
- Target
  
  mus/rouxls_battle.ogg
- Size
  
  702KB
- MD5
  
  15fa8876e7cad54d1033bb6ee237c9ae
- SHA1
  
  bd2a10322d046babd488902e9f70aa6c190a88e6
- SHA256
  
  c502041d7170d1b8511adb33cd7a2ecae5eb1bff2130acf26881cf43a2e31cd9
- SHA512
  
  e698cf2888f9ba97c8699482d766cea15681f92d54c4f399935b2c465f239b4204fb545a0183433cfa7adb8facf2467a71c0aa022e7aa29700a5d85113c53039
- SSDEEP
  
  12288:ma76m48gC5a65Gm7oVcNNH8sfgXX6v6/zicsG5p6wBw1lOg+uBa2sW7Hu94vRB:m+6ZsGm7TA685p6wBwDu9q
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32