General

  • Target

    Revo Uninstaller Pro 2024 + Fix\Setup\RevoUninProSetup.exe

  • Size

    18.0MB

  • Sample

    240527-x7j73sgd29

  • MD5

    a772b8ad72f4d801ac4217c82a91c7a2

  • SHA1

    d5ae988d7253c4ddf6c62fa609d08edf51c20838

  • SHA256

    74f5a370fba58e5cd4db293b3aa77dff4b4d828eaea02432833d5a8e70e33d07

  • SHA512

    c0552490f25695b78c865705d59ff9f3f931d8daf4df05e52be94fa529d8000cf17e070f347464b00c28b42eeb641d81672c2e165824e4e3f0485871d2fc8162

  • SSDEEP

    393216:kZCWWOsxWSq/RnoVf+SgBIdecX67Ya8TR8lFIZCGM5Ap0IKM8n:kUWWOBJaxgkewO8TR8fUCGM5AKIKM8n

Score
7/10

Malware Config

Targets

    • Target

      Revo Uninstaller Pro 2024 + Fix\Setup\RevoUninProSetup.exe

    • Size

      18.0MB

    • MD5

      a772b8ad72f4d801ac4217c82a91c7a2

    • SHA1

      d5ae988d7253c4ddf6c62fa609d08edf51c20838

    • SHA256

      74f5a370fba58e5cd4db293b3aa77dff4b4d828eaea02432833d5a8e70e33d07

    • SHA512

      c0552490f25695b78c865705d59ff9f3f931d8daf4df05e52be94fa529d8000cf17e070f347464b00c28b42eeb641d81672c2e165824e4e3f0485871d2fc8162

    • SSDEEP

      393216:kZCWWOsxWSq/RnoVf+SgBIdecX67Ya8TR8lFIZCGM5Ap0IKM8n:kUWWOBJaxgkewO8TR8fUCGM5AKIKM8n

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks