96121624b8e5bd7560c1f4e55ae28faf7f252bca250707ccda38391cb62e4040

Sharing

Copy URL

Twitter E-mail

General

Target

texstudio-4.7.3-win-qt6.exe
Size

137.5MB
Sample

240314-w7t7lsbf5v
MD5

868a99d73b47ab722921ea371b53399b
SHA1

76a288e302aa5c5a6798c6a9f8b1fdc206da91d1
SHA256

96121624b8e5bd7560c1f4e55ae28faf7f252bca250707ccda38391cb62e4040
SHA512

328a9cdd4ea8fc5ec606227ea2fc09d026790b64c749c6d26509349eb834e2182697822224530ad577d465f9af1385e8946429e8b885353d06b926a0d131f12d
SSDEEP

3145728:AGsNbXJBNC/+kwWT9cki21DqLSCM06qTqS85xZqSH:RsN9BNbpWTOmySCASUeSH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  texstudio-4.7.3-win-qt6.exe
- Size
  
  137.5MB
- MD5
  
  868a99d73b47ab722921ea371b53399b
- SHA1
  
  76a288e302aa5c5a6798c6a9f8b1fdc206da91d1
- SHA256
  
  96121624b8e5bd7560c1f4e55ae28faf7f252bca250707ccda38391cb62e4040
- SHA512
  
  328a9cdd4ea8fc5ec606227ea2fc09d026790b64c749c6d26509349eb834e2182697822224530ad577d465f9af1385e8946429e8b885353d06b926a0d131f12d
- SSDEEP
  
  3145728:AGsNbXJBNC/+kwWT9cki21DqLSCM06qTqS85xZqSH:RsN9BNbpWTOmySCASUeSH
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  26KB
- MD5
  
  d6f185c5bb8b9d6ee47908be05135e4b
- SHA1
  
  135bb033c5c63d69d193d36447b036157f12cd09
- SHA256
  
  19d826cfdbdeb27fccecfbcfecc4f1bdce9f01df509f46b9ba1674f095d62659
- SHA512
  
  16addd64cd38a9e222e1d4b344d0d25e2a1c363116f3f1f77cf76db9b93ca0487f65bc82c601ccf3edc623f2ebbb929d5cda3e61ffa1f3f5a04d34a219ee36dc
- SSDEEP
  
  384:8YMakm2meRRvXikWD/h+g3buKGwWna6hYkuku3bdpn3ZZ:8Xnm2hLnWD/h5JWaoYHkYbdP
Score

1^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  14KB
- MD5
  
  2a95e9a70be1d165a1d8b8d79da1e2c7
- SHA1
  
  bf2209d255448a73a7ca5414043e631e99f5989b
- SHA256
  
  3f19ce87dc3fd1540104352afb61a9f3f816a164a184eed43742efeadec445cf
- SHA512
  
  779862fd67f6e6d161b47551a6129b5b390caab20407043d8f94890a4895f6544ae19bf40359451b3ec5ffc176b4816655d8474610c3d70f57c78bc35168c066
- SSDEEP
  
  384:JepxuRgZvixzDILPx7EWKGKVlDJfs/HpYpym:JhRgZvcUxEzsvi
Score

1^/10
behavioral5 behavioral6
- Target
  
  D3Dcompiler_47.dll
- Size
  
  4.4MB
- MD5
  
  27e4ad7100b1257ec8dcb91b6d986b39
- SHA1
  
  7c98c772a8eb5547fb2ff8e8a4aa0cba28a5222a
- SHA256
  
  06381e078cf4edbfcf8b4316f4e7bcdfd6757a7518022bf5609b1ec1c947c6f6
- SHA512
  
  41aefd3c887614789bb6b11fe5c63260cb91e0fb26f179a1c0aee6d9efa4728e6f96b462e51169429b10513cdad243752a27c9ad5ad9a077ccf5830176e8b994
- SSDEEP
  
  49152:iwEl9qPiw2ErRVPDM4w7xg/IrFZ4aOg7AhiQCOLe0GTjuS/hX9jqux9aOIo4sxEa:sJkCOmDnTlp6ilr
Score

1^/10
behavioral7
- Target
  
  Qt6Concurrent.dll
- Size
  
  32KB
- MD5
  
  1caa14defdfb91c2865a57fff81450b3
- SHA1
  
  1de924fe5a80bb28c4680553cab7a647784ff654
- SHA256
  
  b7af59b985cfd71cb5443a1ab335c85383a55b921bcc3b96ec44d6a4c5985580
- SHA512
  
  05adf60839060ba483cf42a14286b2908c2df41b243cf14bbed36d0979614b6e08e22c9ce553c949c35e4961b02b0b20eb56a27efcc84956654aac4ebf677974
- SSDEEP
  
  768:ICyrF25+3kD0rA7ccccccccccccccccccccccccccc9NwDRBUGH5AvmdZIZbsOJC:LE3kDwmDrTZAvEZObsOJ0RSjRMh
Score

1^/10
behavioral8 behavioral9
- Target
  
  Qt6Core.dll
- Size
  
  5.9MB
- MD5
  
  e69d58328f9c225b9c3eae00fd229715
- SHA1
  
  7099439bc7a39417521d72557baf7c06d886b8a1
- SHA256
  
  3377d2f832140e651efdafc665b0e374cce37ce9f135ea0d446395ae9ef6a7a5
- SHA512
  
  be5be75590879f1ed92a08dd9cafb3b32f163ea0f62aeef04ff14fa67841106aee2d4e40f9cb99e3df8039d3f82c63b96036786da0d79c21ff0c75b3e19050ad
- SSDEEP
  
  98304:x4hBSnZGBwGW6KFdu9CwJsv6tu1Tr4i5ClKd:ChBwA37KFdu9CwJsv6tu1Tr4y
Score

1^/10
behavioral10 behavioral11
- Target
  
  Qt6Core5Compat.dll
- Size
  
  360KB
- MD5
  
  03f236207395206cbec658ed38649175
- SHA1
  
  1e7b0f4f89aa3eef96ae1492217a3b04f656748d
- SHA256
  
  ff56106779c80bc6ad63f950e590cba3c42b4f3cc0e948c505a92f4f03000c33
- SHA512
  
  8fcd506552fc21968b826929532959f15b07b0787d1a8f2e59a1ad6f497ca27f12c90ab6f6a7a43de43067a5a6998b5ab33fbb3098dcb2754fb6fa2c97f9bd14
- SSDEEP
  
  6144:caVhEfQ4raX9jquE0nPqpBoKw0OyYIPylcYv1L1bTT5ChuczAuqW4hw7g:6hraX9jquE0nPqpBoKw0dYIKlcYFe8HL
Score

1^/10
behavioral12 behavioral13
- Target
  
  Qt6DBus.dll
- Size
  
  770KB
- MD5
  
  96d259295488e2331718ef2927f7c690
- SHA1
  
  6b9943da7e16d8cc526b80cdfe78d7a6435f4e4d
- SHA256
  
  9b18399430abbd16e33e6cf8cb332e6a221b522c33046edbcaf7c06a2121159f
- SHA512
  
  68161bc74f6eebf825175d2e69e9db2afc16015c7467d44dcd7b5da0743e0a838f08424d85bb938a00b69e5699b6614a00bf89c5571fca0eddee3ac8c5a2710c
- SSDEEP
  
  12288:Fr8p1OSUqXdpu/H7l7bI3RPz80dS6By/kaGvCByxMIEnuXb3Xc7QeB4c223s+:FWskdRIqaGvCByxMIEnuXb3M7hx3s+
Score

1^/10
behavioral14 behavioral15
- Target
  
  Qt6Gui.dll
- Size
  
  8.5MB
- MD5
  
  582c26e1b28d735e5024120d544137ff
- SHA1
  
  e9773b32d29504ba5d8d1045e751046100e7ab55
- SHA256
  
  c2b16fe376ac314fb62d476707e93a1345b2edb65f95274f407b402d53a8aa58
- SHA512
  
  ed9d4ad14d1bfa6dbc88dc4a8d72cb4b8eaae6b150e091ff30bb60a7bb627b506794511645ca3e646e3ee95804ed2681aa799916819a8ac8ade5f41942af058e
- SSDEEP
  
  98304:AYSi5NAvUYzjcdwT4gE1OqQ+wiGf+IPwpve5iWWNZ/Cysd0gVSk:cWVJ3e+ws8R
Score

1^/10
behavioral16 behavioral17
- Target
  
  Qt6Network.dll
- Size
  
  1.7MB
- MD5
  
  a0a694820f4ae13f621b4f9f4a18111b
- SHA1
  
  f5a1512ba8cce1893452c7baf17f33bd6a886c06
- SHA256
  
  7b493142528cac99a5c6102a08450d1f5ce86f5e640963d90667aee46a74ad40
- SHA512
  
  f230e4614721e310444543e4bdfd5fdff6ff3f645fcf9ad3353e5ac6973a4022003476ad0abfdd4022f52760ab8045b49e80c034f4159d208b582d9f40a552e2
- SSDEEP
  
  24576:pKhaxHQgrJBTH+1nXkEAIMcSIiKx9VK4c9b:pIaxZJBTH+1nXZevYXK4c9b
Score

1^/10
behavioral18 behavioral19
- Target
  
  Qt6PrintSupport.dll
- Size
  
  439KB
- MD5
  
  43aded4fef09d8045443d0cb210608a1
- SHA1
  
  d4361d0c7d2d2872d550820ce747cc2408da1592
- SHA256
  
  23a766b478dc183357aa8dfbc7ed0978b80d7bbc1f361c5c56e74ef56dca80c3
- SHA512
  
  031423f32a5f67d37e8a74aca0f112f6c35fa00584894ffbe9758898910ddd1e3e9a71135c83d67d07c40066b2aa7224caf87f4a4082699cdafa55894838f795
- SSDEEP
  
  6144:an9rl8hs82cV2FbfFcOyopexa3alyT5H/uns63l7RCSLRSASc:a9rlGoI2VfcznRR0AH
Score

1^/10
behavioral20 behavioral21
- Target
  
  Qt6Qml.dll
- Size
  
  5.3MB
- MD5
  
  138c8336eee5678252616774ff6bf571
- SHA1
  
  45d96a63eaddeb2daff951cc9b50aef33ce339b5
- SHA256
  
  bfe3587c92b7d5aa1f9eafacdac1ebdba0c58fe4683496e130d2fb4d61f87731
- SHA512
  
  663c6c8d73d59a5463dcf07c7f1028f59cdcda947aae3343b226c640a7080e058fc99e4296aeb433256c5b710f2f32e08dfdf777c53fad5dc57a48bc11fb41ca
- SSDEEP
  
  98304:RU0TFQeX3ZXXltpPThGg/OmjhJWIHWzRXm39riCU5mS478VJOcaYu5x:f7tG2hJWIHWzRXm39riCU5mGVJOb
Score

1^/10
behavioral22 behavioral23
- Target
  
  Qt6QmlCore.dll
- Size
  
  143KB
- MD5
  
  866b9554bfb48cc945c7ab28d3b99edb
- SHA1
  
  df7faf8dabe44f144dd7235ae813bf3832e49d55
- SHA256
  
  1753ac247df706d70988cfb786dd55cbe283574e262f8d306da535cd21a08ad0
- SHA512
  
  540171e35f2d265df5bdcff471cac98658b31b07b277dad25aa265eb2258c0e8fdeef5d9f1846162da7205751cda5a0d54b706b565397b4cca2da2637707e7c1
- SSDEEP
  
  3072:fglM8L4RRP3I0VWtCv/obT/I4FHyR1LJ5a31DO2mlLBwIoI2:fuW5BAbT/I4FHO1LJ5I1DO2mlLBwIoI2
Score

1^/10
behavioral24 behavioral25
- Target
  
  Qt6Svg.dll
- Size
  
  382KB
- MD5
  
  ffca13030f4ff87aa94ba1c0b4128227
- SHA1
  
  ba5eef498530251b838bb66940e246fecdb01e12
- SHA256
  
  903379aad4f65d0323ef293f7cc58cdfcfd8f4bfe61e8d381988c9fb258fa046
- SHA512
  
  21c3fdece16ab6cae8db61c6ea846d62b441803b06fcdb5d7409d0e0563e1007f88fde04a3828395ea6f7e19bc7899e731d80d6aa98948a4b4db84b6f47ecc5b
- SSDEEP
  
  6144:FanQ3V6kFPcvfDZCHcOkO0qDH5We4ZvJLkM7zoxJlxQfmndQTi3lcvSzdRq8WZ:8nYV6F3V2DZf47LkM7zoxJVnd9lcydve
Score

1^/10
behavioral26 behavioral27
- Target
  
  Qt6Widgets.dll
- Size
  
  6.6MB
- MD5
  
  cffe20e3600e46f7f32452770fcacb0f
- SHA1
  
  fcd0b11dcff5d2065760ce038936bfe1dd220310
- SHA256
  
  8504bfaed77271d25042dc21f14fa4a9e29d948af60951839a533f3fd2a31086
- SHA512
  
  bab10394febace1102035ba871f9c1ec0efed9b3f45f7e9afd7286abfc3e945a1b0e0eeb951c48f94656c4a85f52890e3ae5860d950f3eeaf170b86f227da13d
- SSDEEP
  
  98304:XwkIeps/YbkT+ir7jaX6A3eWgYsEGMqcNH/+n0dXm:V89Ky7joX/+j
Score

1^/10
behavioral28 behavioral29
- Target
  
  Qt6Xml.dll
- Size
  
  149KB
- MD5
  
  40a5e216e04e27f149123036bed7b23f
- SHA1
  
  e2e884617a37b0adde583110d7de222b3d06299b
- SHA256
  
  5cb8a7ab54880549b2623691359688daef1913ddc6e1451a416a3494ad941f2e
- SHA512
  
  ba61b17edf715f9f39033d89e634251231c3cd5213d493331f0fd4545c670604506f581cf27f53459906b12700ad33e963dd634dce14407cbf006d3894f2254d
- SSDEEP
  
  3072:fSS1RzljuGUX1mtdGqbncknHxz+ysJTFrzLKF1IE:fLDZjUm3GI5+7TNzLKF1IE
Score

1^/10
behavioral30 behavioral31
- Target
  
  TexTablet/Interop.micautLib.dll
- Size
  
  44KB
- MD5
  
  0ec21442b5928d1d963101100340dc79
- SHA1
  
  bd9a0253a1accb33cac30f09927623c182fdc85f
- SHA256
  
  7e38b3f5e7778c2b9cd01892026843f7d38ff37be053c0583ee0621471b321f6
- SHA512
  
  d1cf1aa8172c9b6061ef3effdebe5e63b5006147f2c1af2ae0fad0e6a8f1f3a8b940427ba6a2e7ebd6137e3d2a3ea4d6b2387ac2f96ff6e9414e774149b8d408
- SSDEEP
  
  768:00Vt5weqSMEL2UABP1kXn/vlgSp3CWxO+lMfLvEQo0s+KeBFzd64hD/:jVt5wfSME/AqdgSsvrsbep
Score

1^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Executes dropped EXE

Loads dropped DLL

Checks installed software on the system

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32