Overview

overview

8

Static

static

8

Aero Glass...64.exe

windows7-x64

8

Aero Glass...64.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    Aero Glass 1.5.13.1612 Ultimate ver.X.0.0.25 beta x64.exe

  • Size

    3.5MB

  • Sample

    221222-2tlwzafd76

  • MD5

    402ff1ee1990f9b6af44e9263428f359

  • SHA1

    816ab6a6539101abe13b20630c58917d6ac28317

  • SHA256

    693fcef0a4a1f6de772995070b4169008671c76fb9d354a94232794dd469153a

  • SHA512

    9f78726bf320840eee75daaf121ccfbb8c6563ac4d0a5bb7cbb0491f613135003c51d9e3a1add51f7a6b78962a0746b441875538c37053130939b5e41ea22e4a

  • SSDEEP

    98304:lqS29Ce0qA53lpMMSpw3DCibPHXFlIrN35FUZdmzKhY8:l529vA5Apw3DNHXFCrHzKhD

Score
8/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      Aero Glass 1.5.13.1612 Ultimate ver.X.0.0.25 beta x64.exe

    • Size

      3.5MB

    • MD5

      402ff1ee1990f9b6af44e9263428f359

    • SHA1

      816ab6a6539101abe13b20630c58917d6ac28317

    • SHA256

      693fcef0a4a1f6de772995070b4169008671c76fb9d354a94232794dd469153a

    • SHA512

      9f78726bf320840eee75daaf121ccfbb8c6563ac4d0a5bb7cbb0491f613135003c51d9e3a1add51f7a6b78962a0746b441875538c37053130939b5e41ea22e4a

    • SSDEEP

      98304:lqS29Ce0qA53lpMMSpw3DCibPHXFlIrN35FUZdmzKhY8:l529vA5Apw3DNHXFCrHzKhD

    Score
    8/10
    discoverypersistenceupx

    • Creates new service(s)

      persistence

    • Executes dropped EXE

    • Registers COM server for autorun

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Modifies file permissions

      discovery

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks