The method is not new as this sophisticated cybercrime organization (aka APT-C-41 or Promethium) was noticed delivering malicious WinRAR installers in highly targeted operations between 2016 and 2018.