General

  • Target

    WinaeroTweaker-1.62.1.0-setup.exe

  • Size

    5.7MB

  • Sample

    240228-my5sbahh22

  • MD5

    157e743031c4e6be81ab205ee109f944

  • SHA1

    06c39459502adf9ccab19111bef0877b6f21d670

  • SHA256

    6c1ec6433e1d991ec587ae14bd00d9c37ed8395896caa6ce19e1b48a12a50346

  • SHA512

    eaa9a078a093bc108b28c1469cf82a301b2ce0a5d66e293f89d94a12d1dab383d4b79e60a6a9514555a692e23ca4c99fa67885cac9f04c584c80b1bfd6cd6e35

  • SSDEEP

    98304:nkL+yAKH/+GFeGCYKtl/gOGhpslPXCuutHpKx8o3zEOqWAwPWBCBnQX5FHin1KTc:c+5KH/+Grg5gOEuO8x8wAOPAwEynMFaN

Score
7/10

Malware Config

Targets

    • Target

      WinaeroTweaker-1.62.1.0-setup.exe

    • Size

      5.7MB

    • MD5

      157e743031c4e6be81ab205ee109f944

    • SHA1

      06c39459502adf9ccab19111bef0877b6f21d670

    • SHA256

      6c1ec6433e1d991ec587ae14bd00d9c37ed8395896caa6ce19e1b48a12a50346

    • SHA512

      eaa9a078a093bc108b28c1469cf82a301b2ce0a5d66e293f89d94a12d1dab383d4b79e60a6a9514555a692e23ca4c99fa67885cac9f04c584c80b1bfd6cd6e35

    • SSDEEP

      98304:nkL+yAKH/+GFeGCYKtl/gOGhpslPXCuutHpKx8o3zEOqWAwPWBCBnQX5FHin1KTc:c+5KH/+Grg5gOEuO8x8wAOPAwEynMFaN

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks