330347b0883066390edf5949e4de07ec47aa264f83c3f4f634426bb92e86692b | Triage

Sharing

General

Target

TeX2img_2.1.0.zip
Size

6.3MB
Sample

240930-j7smkazajh
MD5

12008ecf5c22011ba6f0c86f8337be6b
SHA1

40b011fcb5311942300cbfe730fe187678bc10e5
SHA256

330347b0883066390edf5949e4de07ec47aa264f83c3f4f634426bb92e86692b
SHA512

be266d07729de150eb89422e96e8b33fec3942d1e734a1dc6465b0ecb23cf8f870aad4515fcf59e72a91134d7f784eb1a8164777505afdd3e6e21f3e78fd5d83
SSDEEP

98304:E1WyDlTbUEWU6x1B3gi03PYaikpey+HAbpNPTN4IdHTec+4RXCcSv6maV:Al9G1B3gi00kpe07bN/dHTec+UCtM

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  TeX2img/Azuki.dll
- Size
  
  224KB
- MD5
  
  4bc5a89404f806edea93cb03557c3bd5
- SHA1
  
  e5ad09481222a12cceba7aeb8d81744a12f50d4e
- SHA256
  
  ba57fb96d490fbe798028686921bb0f044c60d1a9e93b1319e3983d8c585fccc
- SHA512
  
  d56b40f645cc0b33a39ccd7181a7218164f8a984ca1cd97c530ea36d70be37db079c9d26c8ed0356096aa12f6c82ae6ed08c1c6e545b7aa5697fc8f05534ec15
- SSDEEP
  
  3072:yCLLKcHzsQDom0cPMprX9Ll8ZD26I3hP3x60rYI4QikttttW+tbddv4vjw5gCiHv:yKnG+D2H13xN0MDi0hZo
Score

1^/10
behavioral1 behavioral2
- Target
  
  TeX2img/TeX2img.exe
- Size
  
  3.1MB
- MD5
  
  d150ae58bf251faf875ab3497265aa83
- SHA1
  
  71ddca99cf1d9bda6dfc7d6750872e4d72a97e51
- SHA256
  
  d664d0213ebcb7f949d419a47e2dcfd7a36ae50b2ebe71fe0ebb241b90488881
- SHA512
  
  39a1c5c5b9ecdf0ba9923d770f0bbbb304bb7a1e603fa4e7fd1bbbb01f8fbf593b43c8ae95a145d5ebe0a0ef4ae5de4d43456633e4ed41af78d2ab026930d4d9
- SSDEEP
  
  98304:edwjlTsdwjl0dwjlLdwjlPdwjlPdwjldvwjl:9TTLkYYg
Score

1^/10
behavioral3 behavioral4
- Target
  
  TeX2img/TeX2imgc.exe
- Size
  
  7KB
- MD5
  
  f711586915291e7c63bb3d22fdd8104a
- SHA1
  
  44f22b40d810e3d874109b7dcce76b703fb99ba7
- SHA256
  
  781c63e01d5962f17dd0fdbfde1605c9d3a6e27bdef139c40647909b87f822d2
- SHA512
  
  94b032e6c56a51ad02cd4ce6ecd84ed84804814684f8dbc99dab96d58817545cc3b86a963cc163409eace9d162f1309ed1c505a1ca22c9fa9f0b2529e66c8481
- SSDEEP
  
  96:EkE3FR+oHVVmEmZOcwqY+3WRCSqa2r37z+BwZ+t5MCyX9LIT5zNt:EkE3FR+ojm4cUw3X7zZZ+t5MCE9Lk7
Score

1^/10
behavioral5 behavioral6
- Target
  
  TeX2img/ja-JP/TeX2img.resources.dll
- Size
  
  2.1MB
- MD5
  
  fdb4d2b191b3009d2f724304b0d77be0
- SHA1
  
  78cb24449f45847ae54423aa65681386882b1435
- SHA256
  
  a7c5ac894d78d730b391c2f8cd150d867ac864c2843c4c9d068d5aedda14d212
- SHA512
  
  6779ecf00926aba96b73e46b31bb2f21bccf5e3a3cb6443acb7c4ca2a212ac39d2ba504d08ca5bdd975e2e4959bc526ac060b2c6d911b87b75c5702f4bcf6550
- SSDEEP
  
  24576:MdwjpvXBdwjpvXCdwjpvXqdwjpvXcdwjpvX:MdwjlBdwjlCdwjlqdwjlcdwjl
Score

1^/10
behavioral7 behavioral8
- Target
  
  TeX2img/mudraw.exe
- Size
  
  4.4MB
- MD5
  
  54c96264aabf16463d262c2b7273a25a
- SHA1
  
  852c81dd6d63288fd2f5583e764ab5b91d747f46
- SHA256
  
  a797ec2c59defaca247dff7ed37cec0e792f2c4d25eedca46ef69a33c1dd5a2b
- SHA512
  
  f4b49a2b2e0f5950610931452a42cef316425a8c8d742447357e6f18621693a5d48ffc83bb76ae5e6140226493d3eab75ff8240cd2bfbaf9f44c02f4cfb2d335
- SSDEEP
  
  98304:WWxxRTMtZXWzr2zMNUEic1ZCfROLClTXM6C83nBlGr4CZkT:bxfMtZXWHxiEi2Z2wLClTXM6C8XBbCyT
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  TeX2img/pdfiumdraw.exe
- Size
  
  3.3MB
- MD5
  
  2932671c8a66b9f21937d92358623c43
- SHA1
  
  12128da619881c6a15da2a5a16f3bdab1bb24ff9
- SHA256
  
  1f64e023fdc87e105fb693028e2320015f10b021a440f5a7e65f18de1ea1b1eb
- SHA512
  
  133f54ca90215dbd0c3ab93c8f7f9f721807313f1639381e14428c61190ae983faf23d552a89aebc6536788116a0454dcffebc95e6521730a533d905e2820831
- SSDEEP
  
  98304:Mzncfd4k1LTBgOjbtI94tkF3wnNCICqp:Mzcfd4k1LFgOje4tkQCICS
Score

3^/10

discovery
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12