8b46861abb7266c798b27cd6e4cc95e6e81215870128f892236b7a27dfb02b74 | Triage

Sharing

General

Target

winaerotweaker.zip
Size

5.2MB
Sample

240802-r4xfcashjb
MD5

455613c0a575bc31a050af6f2418d8fb
SHA1

225f6311e872a226cb69ccd3055d43d86d598a1f
SHA256

8b46861abb7266c798b27cd6e4cc95e6e81215870128f892236b7a27dfb02b74
SHA512

991b204b17a7bb91756479d685e6d53e4cb2c7a399a3a04037154c7ef5363cb720fc2d6d210ab2d76078041acd690adbacd927f77c1b7eb224f23ac5bd611967
SSDEEP

98304:evfj+3G105BbaptFKDiFV18Kcn7X5djJB4omU/u15v45vCQB+ebmuhtQWRAPNrvF:8K3q+Gp28kdXDUBY4qf+ebmu/QWR2iyn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  winaerotweaker.zip
- Size
  
  5.2MB
- MD5
  
  455613c0a575bc31a050af6f2418d8fb
- SHA1
  
  225f6311e872a226cb69ccd3055d43d86d598a1f
- SHA256
  
  8b46861abb7266c798b27cd6e4cc95e6e81215870128f892236b7a27dfb02b74
- SHA512
  
  991b204b17a7bb91756479d685e6d53e4cb2c7a399a3a04037154c7ef5363cb720fc2d6d210ab2d76078041acd690adbacd927f77c1b7eb224f23ac5bd611967
- SSDEEP
  
  98304:evfj+3G105BbaptFKDiFV18Kcn7X5djJB4omU/u15v45vCQB+ebmuhtQWRAPNrvF:8K3q+Gp28kdXDUBY4qf+ebmu/QWR2iyn
Score

1^/10
behavioral1
- Target
  
  SilentSetup.cmd
- Size
  
  471B
- MD5
  
  7d6a53b4ede015a95c460b357de3a452
- SHA1
  
  02f301492eb96d44c285b967f1e34646b6b68a14
- SHA256
  
  206661f36abed6395524213eced38ff12a12c58f643efc77cbbbb0fe46a02dfe
- SHA512
  
  6c3eb0b1907654cdb19f8405f2677e9607c9e7b00474ce10728409a0d4ab8986386bcad14f4cc07f6f99e6e4f7f30c81c09c42d8cdfa03f4a885bf150dc3aecf
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral2
- Target
  
  WinaeroTweaker-1.63.0.0-setup.exe
- Size
  
  5.7MB
- MD5
  
  df244a4909ab521e04df2306c026fc27
- SHA1
  
  2282c628e8191ced198c2aa21a623a2eda6e0431
- SHA256
  
  fabd429204db75e2ff9fe7fae5dc981b8c392be42a936273c99dcc41eeb0730d
- SHA512
  
  6609d199ffab65e84fa2f11d36c336465a79b3430f16305e57b46c07edcafac239c16f8bd76e5f08318d76fa294024017f9be21dad16145571727c550f37f279
- SSDEEP
  
  98304:nkLSlahKN+zztgHtfsTwFFF8yIn7t5J7BZAI6GzilpVSZpi8XiSzmItNUiTknrrv:c9hQS2HKik/tfgP+YutiSzmILUiTU6y7
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3