79af1f9153b8ff988baffaa164fc70799950078f887e2c93dc3fa7efed674b21

Sharing

Copy URL

Twitter E-mail

General

Target

tesseract-ocr-w64-setup-5.3.3.20231005.exe
Size

47.8MB
Sample

240312-1846escc7y
MD5

6e11fbca5a293bf79bbb544fa35dd67c
SHA1

e7a4de76b0da06ed1857728ac9c16083d8b79c90
SHA256

79af1f9153b8ff988baffaa164fc70799950078f887e2c93dc3fa7efed674b21
SHA512

37f3f1cc0ee84709b9fdc6d4242fe23a7109d164a008461e80d4b40092ca19bbc053779205b26692abb98798c28d6d18fa39628c60441112c7eaadb519f53837
SSDEEP

786432:yWCoFFSzeTjaz7i05m+VvfftWUlmbirs5KoNArCCszNJHqYFBMbwPyp:yWCOF0eTgp5xv0virsUoNFJHdSwyp

Score

4^/10

discovery

Malware Config

Targets

- Target
  
  tesseract-ocr-w64-setup-5.3.3.20231005.exe
- Size
  
  47.8MB
- MD5
  
  6e11fbca5a293bf79bbb544fa35dd67c
- SHA1
  
  e7a4de76b0da06ed1857728ac9c16083d8b79c90
- SHA256
  
  79af1f9153b8ff988baffaa164fc70799950078f887e2c93dc3fa7efed674b21
- SHA512
  
  37f3f1cc0ee84709b9fdc6d4242fe23a7109d164a008461e80d4b40092ca19bbc053779205b26692abb98798c28d6d18fa39628c60441112c7eaadb519f53837
- SSDEEP
  
  786432:yWCoFFSzeTjaz7i05m+VvfftWUlmbirs5KoNArCCszNJHqYFBMbwPyp:yWCOF0eTgp5xv0virsUoNFJHdSwyp
Score

4^/10

discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/INetC.dll
- Size
  
  25KB
- MD5
  
  40d7eca32b2f4d29db98715dd45bfac5
- SHA1
  
  124df3f617f562e46095776454e1c0c7bb791cc7
- SHA256
  
  85e03805f90f72257dd41bfdaa186237218bbb0ec410ad3b6576a88ea11dccb9
- SHA512
  
  5fd4f516ce23fb7e705e150d5c1c93fc7133694ba495fb73101674a528883a013a34ab258083aa7ce6072973b067a605158316a4c9159c1b4d765761f91c513d
- SSDEEP
  
  384:pjj9e9dE95XD+iTx58Y5oMM3O9MEoLr1VcQZ/ZwcSyekMRlZ4L4:dAvE90GuY2tO93oLrJRM7Z4E
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  8KB
- MD5
  
  2ac83ff9f2eb44ee250e2007423f7784
- SHA1
  
  d7fe9e3db03a24b603a4a61ec287fa2c1073d364
- SHA256
  
  1f9ef3943d58dd80a774a5a81578b48bc90f494025e71f6e40ef7def3a06ddf2
- SHA512
  
  0aebd903e1a77bec0fac7a1f2ad88e57b9bcb07b351907164f4e674150f1c02807b7667b6fc04fd1e5b27607bbfa87cc179b03f10762b4bb781a3dfbed6c97bf
- SSDEEP
  
  192:TopZK6yypD9pg5Z8YkvQhRibNU/2/ojr:8vK685Z8YkvKibN
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/StartMenu.dll
- Size
  
  12KB
- MD5
  
  fb106f9e525281c3a443ceef2d6e210f
- SHA1
  
  8321054b611787d2dacbcb1495c2b627dac04629
- SHA256
  
  fe48faafeb1d3bf312d66d60d2207648d0959c7b9263356c81d0d7f626333aa3
- SHA512
  
  d9fd571b0a27fd055a21b539dfda994d2b8f8a40872d98a1a61bcf671a94fb550ea58a20c677b3eb52be37853d860ed93a5d96b47b36be71dcad6d85d754eb66
- SSDEEP
  
  192:cDSmSTusK05zGwXwhJdlX3unYkvQhTuy8Fbxb93/a:6qr5zG2wTdhunYkvAuy8Fbf3/
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  31KB
- MD5
  
  dab726bff7cb0f079d232b2c4d0efd8d
- SHA1
  
  4d0ebe0facbb66c9c03e3f6b5beb411cb75d9ec9
- SHA256
  
  9d46463e1925bf29cd86c7a56ccf540f1eeef3cb50064a222b84703436cd7e8c
- SHA512
  
  6aa6097777afdcb073b8fc8ace1a244ac9215ec152720d8b4a32f6196181b135a900491c7fea72bf1df9ed69e51b90cd21eca4ed902d8503d0b1b04c162a2162
- SSDEEP
  
  384:Q/h37/UFERnoxFtgQw+S4nebga3ZBB/Ykv44IwwH9tPPPPPPPPPP6MIkwQeKe/u+:QNQyVOFSR+SfTZlvCH91ze3WAz
Score

3^/10
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/UserInfo.dll
- Size
  
  7KB
- MD5
  
  d45e6d34a3db2f350fa56b066962c8fe
- SHA1
  
  354987e974561a9ee397877432cbb35363ac4e67
- SHA256
  
  67ae64f52d6d84407820d09304fb12f5808e8caf332f6092bd0a722ec5977894
- SHA512
  
  e0bf5810a74f447a04c16625e21e6aae1cf65886d26cef0ed747c8ec4b107229573ad58ee5fbc2c034c6d16d7cb71ce4534515ff843457cb37b7490f44657b8b
- SSDEEP
  
  96:cIEtKOVXjuPKFtb1FTqZTruRkNBQhH7gjiv/fMqeR6Da:iVzulrYkvQhbgjikqet
Score

3^/10
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  14KB
- MD5
  
  494c8f9c6a5fc302e8b50f05ef9aeb8c
- SHA1
  
  75fe258210f0989a7afaecd42e45841d076dc8b8
- SHA256
  
  e9ab864697d454cd4a85abf38ec4236ee56ddd0c59f9422ae1e774b9487f132d
- SHA512
  
  363780eeded89bd720addb11ef42893d13852fe1c446305cbda73cf994da6848338458f2da4eafa42857533e6fc30e24f6db3b36df5f7cc51b9307010ddfa401
- SSDEEP
  
  384:DqWL5JCYXh2OPxv9OIR6oYkvLlAPPPbgS+dXA2N:DqXG2cLR9v2gBnN
Score

3^/10
behavioral13 behavioral14
- Target
  
  ambiguous_words.1.html
- Size
  
  17KB
- MD5
  
  3c69a7bbe48f30c7829185c9cb053153
- SHA1
  
  505c4f7b9107c001edb47f218d8b82097664a88b
- SHA256
  
  cf7b48a7e5c3688de899d9e9654bd31e11a1a3c1bb8853a7cef19b934155eac5
- SHA512
  
  8456fa1763683e223dc96f6ab55f173b0d3ce6862ab4a5bba7671f61108a20b7a84209d105a8a90903adc8186b3113657d5ba96946bbc4cd4311bf1f3b446fed
- SSDEEP
  
  192:b25icth7o14c2mgjzapG9hAKFg7Ce+xgrXQto8npJ+u3S1VwMKhMsY01EppM9a7z:mic/7NlHRV3nP73SXoFn1EppMkm9mSjS
Score

1^/10
behavioral15 behavioral16
- Target
  
  ambiguous_words.exe
- Size
  
  1.0MB
- MD5
  
  4b05b03f639ccb21f3c4268a240289f1
- SHA1
  
  09216ee2b256d9472b2629067b062ac246b4b487
- SHA256
  
  3632e3965e30a66e85cc1ca9f77dbc9fa25a23bd255c8f9f28a82f816704b87a
- SHA512
  
  a1d3681ee764685af8a265f4a5f1dfbd6aac431185a917d7635499a2034ce67cace356c11875f0aec7851d890193f070da45034a0f1d982c3154d8c53b0e5db6
- SSDEEP
  
  24576:C0B3bVdPwwus91Zh/RXvuRxJqT6Rvo2gcWZRaFe/CF/gd4GSRwf96JdXNERXNu7g:TBVdPwwus91Zh/RXvuRxJqT6Rvo2gcWp
Score

1^/10
behavioral17 behavioral18
- Target
  
  classifier_tester.1.html
- Size
  
  19KB
- MD5
  
  bf12d2f367fc87fcfe6f3606abf34d4f
- SHA1
  
  c688db55cd8b25ca3898686f1c115df0a97fbb4e
- SHA256
  
  14e809e7542db00e200f847ad4987671849a5cb25296dd768ddb549b622dee67
- SHA512
  
  9a1a61a4af144ee94347596a1243ea6a6c480265cd2045589939d6e96a88c9597614b42eed30f9aaa807ce6f93f99a95258caef0cae7193c1bda93febf1bbd7a
- SSDEEP
  
  384:Jic/7NlHRV3nP73SXoFn1EppMkm9HOKTUn2Qg:Qc/7/HRRD3nippMH+n2Qg
Score

1^/10
behavioral19 behavioral20
- Target
  
  classifier_tester.exe
- Size
  
  4.8MB
- MD5
  
  d01e9cdd227abdf6f91c2a10af29ec1d
- SHA1
  
  5f99a4b6f12088ab69be5b08567cad0c1bb8a454
- SHA256
  
  0741c8d4a6f3a8187ee24755b0d8893ee13c5da152a5efd77e6585ddb0002918
- SHA512
  
  4f85ef6dccc24f1a3f0cdfbc4c38859b02fbb7920f1f53011791988fd986a3b5b4861bd6e7cc1faba8f3c2b5b9806d85bdd45ddfcfa7feb66aef8027b01432a6
- SSDEEP
  
  49152:TTqmQp/dSCw289rshJsT7ERn3peJ6Mgt4DeSwz+dTFCQ8ghOEDPZX82HbA7j2On6:vgc13u0AsbBZH0XqbIfc0zzfYOJF8tPP
Score

1^/10
behavioral21 behavioral22
- Target
  
  cntraining.1.html
- Size
  
  17KB
- MD5
  
  ed4611133e4fa2e480e490f51ee6b060
- SHA1
  
  e907da2f41f628a33d01564d5e2f15e80c0f34f9
- SHA256
  
  07bce70ac1b9d037bed4c248dfc4c0516cb06e970ec8aefc4beb82bd1fdac93f
- SHA512
  
  7fbe3b6f163e378c99205b66f70fc6fe1e272ca89d2ed1480c3311dde001f1ec73751026c9bcad7f11bb43c3466396425059b7460ae0c270f9262f9b3d90ea28
- SSDEEP
  
  192:425icth7o14c2mgjzapG9hAKFg7Ce+xgrXQto8npJ+u3S1VwMKhMsY01EppM9a7N:pic/7NlHRV3nP73SXoFn1EppMkm9BA
Score

1^/10
behavioral23 behavioral24
- Target
  
  cntraining.exe
- Size
  
  4.5MB
- MD5
  
  04fbe43b844b14f70227db4b9be9de53
- SHA1
  
  0b494f7c132aabaaf24675e8f6c3f453e13a23e5
- SHA256
  
  15f8b5d76aa6d2dcf40a8c50150d81888f2e3d6b40a601a7d6e5a32ee4bc138f
- SHA512
  
  b7f192bb99178b8517e79899ffec2d527a7763d4a66e288e65f06dba00a65ebf170e235f2d1dd17a38548294fc14533f3cd758d5674cd2a183c095c62cefbca1
- SSDEEP
  
  98304:wKu3VaYBdpiaPyZ9KQZcQk3/gzZe+8T5x+WtNm:u3VaYBdpiaPyZ9xiQk3/gzZe+8T5x+
Score

1^/10
behavioral25 behavioral26
- Target
  
  combine_lang_model.1.html
- Size
  
  20KB
- MD5
  
  b804155fc0a59df670bf43086b31c71d
- SHA1
  
  d8e3c57eed81675ff5c8b26fac53159203b70a3a
- SHA256
  
  db54952e34d79727b4723a8c72a2fccf6b0cd3cfb24d392993de962c441b5d18
- SHA512
  
  8c5361a19c7a69f5025d19543c396655ea1e8a1971f8cb4df340cd5c4d2b64ec25ad9184ea7ee27d4c3888757a9adc7a59835c2e407ad75ae00413784e9df9bc
- SSDEEP
  
  384:iic/7NlHRV3nP73SXoFn1EppMkm9iyo1eU/+8ybwA:hc/7/HRRD3nippMif28/A
Score

1^/10
behavioral27 behavioral28
- Target
  
  combine_lang_model.exe
- Size
  
  3.3MB
- MD5
  
  f8caf0e08089135d524b50dc0e20cb01
- SHA1
  
  5b58b3a42f5906318078a1a38c6e9eef78fe2df5
- SHA256
  
  a48e09839e8df98dd14d8bf34047f0472e5f7d82adbcb6967efea004f3b1fa47
- SHA512
  
  ad88f590da800f70cb3f6264bdeda65a12058ae13d8d8d43e7286365612088ad3d40dcc488b29fb7547258da9f8e8485769dafe6f2325ab36fed3e2a2ba75dde
- SSDEEP
  
  49152:t3WhUA5hHqHqfkqBa0mYGhYlcyr7Zd1UNYo/avEN6/3jTitLthnCoj3wLtiSFUay:t3Wudcb4Qu4bVOnKjdPu
Score

1^/10
behavioral29 behavioral30
- Target
  
  combine_tessdata.1.html
- Size
  
  26KB
- MD5
  
  955cffe2d164f10e391dff609e5cfd3d
- SHA1
  
  1b14ddea29ad2c09c87f896a88f43c643b5218b3
- SHA256
  
  a6fbd59719bc3615c6becdc2e7621db409ad0a8277aff5d6890407f2a4567b75
- SHA512
  
  7823284e0e2236af1025bf6b52365c7fcdd2f95f0a8fe93f05b04036c5ca292e19289a8c8911aa6f018a34c1bce63bf4023ce6ce45473c7cd5114ddb2865f5b7
- SSDEEP
  
  384:xic/7NlHRV3nP73SXoFn1EppMkm9OQG2E4pA3xn7qIYf2r/gAJ1qihNX:Yc/7/HRRD3nippMOQGZ4pA3ZqIYfIX
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32