Overview

overview

7

Static

static

3

Undertale_...up.exe

windows7-x64

7

Undertale_...up.exe

windows10-2004-x64

7

Undertale_...om.url

windows7-x64

6

Undertale_...om.url

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Undertale_v1.08c.zip

  • Size

    408.9MB

  • Sample

    240701-e5771szcjq

  • MD5

    23b3e23e59849a5c5a40706a6ee02195

  • SHA1

    900e5302c51c6938a5c87ae1384e5c7f6aaf243d

  • SHA256

    380a67eb089437d2adae635c034d90782b114daee41ee40cc24c1efd3bc7bc9a

  • SHA512

    87bf55d519ad652ff5849376702cb8578eb6d5ac23b6a60dd351adde3174f4b8a962bdd54bd3acad5b61f5edc4b5c17c6bd626d0536ceb60a15ef3527b88e3f1

  • SSDEEP

    12582912:WhwXUOjxFKJhBw1/4dtsDXLnTmldSTeOZWGLAQrlDpk:WyTjxFK3m1+tKLSd8ZWUla

Score
7/10
discoveryevasiontrojan

Malware Config

Targets

    • Target

      Undertale_v1.08c/Undertale_v1.08c_setup.exe

    • Size

      118.9MB

    • MD5

      e1e154b4199750eceb00748e9d866d75

    • SHA1

      dd4daa7eddbedaa595c660a395b4c7a5d1b2adb2

    • SHA256

      96e274b11eaeec810977e9274c32b68f7aad586fe7b0555e3e9dd6505b3d7f40

    • SHA512

      09ae7654d5fe0a92f0fd84e812f0187f6d1e15ec0d10589f02ad198e7454f17ef52a87221b0bb0be9a688366fbac8e32baed885a1d80799910ac4c2e271ac1b2

    • SSDEEP

      3145728:unbUhqe2SsDAvqZCc0VpuRd2akoazYXsdc/V6/mS+A2Svqf0tKhygA:gUhDVKAvqgcFPkDzY8dc/V6ZPifEshA

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops desktop.ini file(s)

    behavioral1behavioral2

    • Target

      Undertale_v1.08c/tuttop.com.url

    • Size

      109B

    • MD5

      994ceda3baeeafa875c17598f97387a6

    • SHA1

      0c5d2297bdf8f712f5fbbf495e1f9add9d76d8ee

    • SHA256

      b577a2d69bc2e609b6aa32aaf6e78a0aae3aeba2517d23edabe14387cd478c18

    • SHA512

      7a8fdd683c546daa52a2275c2a461880d519d898ed08c86eac35360d6007b211aaf478ac6409d5340fe7ec67adca07a0d9dc20b2245c9c80293ada6f15251c46

    Score
    6/10
    evasiontrojan
    behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

3
T1112

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Credential Access

Discovery

Query Registry

4
T1012

System Information Discovery

6
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks