9e2d4852ac33dce2ae9ba87fc4ed3d87f2f77f3d468d11e5bbc9892c1dac1d2b | Triage

Submit
Reports

Overview

overview

1

Static

static

9e2d4852ac...ac1d2b

macos_amd64

1

Analysis

max time kernel
148s
max time network
151s
platform
macos_amd64
resource
macos
submitted
01-07-2021 16:34

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

9e2d4852ac33dce2ae9ba87fc4ed3d87f2f77f3d468d11e5bbc9892c1dac1d2b

Resource

macos

macos_amd64

0 signatures

0 seconds

Report Analysis Logs

General

Target

9e2d4852ac33dce2ae9ba87fc4ed3d87f2f77f3d468d11e5bbc9892c1dac1d2b
Size

277KB
MD5

8779712d208e4a75555fdd0e71c8376c
SHA1

fa2f427787ba9b0452a33d17df14209db02fede2
SHA256

9e2d4852ac33dce2ae9ba87fc4ed3d87f2f77f3d468d11e5bbc9892c1dac1d2b
SHA512

bdf2e6cd73c21c387390fbe2beafd988714cd6006ad373b65dcf10bcb94786c3121dfbcd2c2566f0eb62a209fe5ccf0d655a4d6ba4dd8877916fcd1669d67bac

Score

1^/10

Malware Config

Signatures

Processes

/bin/sh
sh -c "sudo /Users/run/9e2d4852ac33dce2ae9ba87fc4ed3d87f2f77f3d468d11e5bbc9892c1dac1d2b"
1⤵
PID:468

/bin/bash
sh -c "sudo /Users/run/9e2d4852ac33dce2ae9ba87fc4ed3d87f2f77f3d468d11e5bbc9892c1dac1d2b"
1⤵
PID:468

/usr/bin/sudo
sudo /Users/run/9e2d4852ac33dce2ae9ba87fc4ed3d87f2f77f3d468d11e5bbc9892c1dac1d2b
1⤵
PID:468

/Users/run/9e2d4852ac33dce2ae9ba87fc4ed3d87f2f77f3d468d11e5bbc9892c1dac1d2b
/Users/run/9e2d4852ac33dce2ae9ba87fc4ed3d87f2f77f3d468d11e5bbc9892c1dac1d2b
2⤵
PID:469

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:470

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:470

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:473

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:473

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:476

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:476

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:479

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:479

/bin/sh
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:482

/bin/bash
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:482

/bin/sh
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:483

/bin/bash
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:483

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:484

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:484

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:487

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:487

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:490

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:490

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:493

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:493

/bin/sh
sh -c "sysctl -n hw.ncpu"
1⤵
PID:496

/bin/bash
sh -c "sysctl -n hw.ncpu"
1⤵
PID:496

/usr/sbin/sysctl
sysctl -n hw.ncpu
1⤵
PID:496

/bin/sh
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:520

/bin/bash
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:520

/bin/sh
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:521

/bin/bash
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:521

/bin/sh
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:522

/bin/bash
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:522

/bin/sh
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:523

/bin/bash
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:523

/bin/sh
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:525

/bin/bash
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:525

/bin/sh
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:526

/bin/bash
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:526

/bin/sh
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:527

/bin/bash
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:527

/bin/sh
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:528

/bin/bash
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:528

/bin/sh
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:529

/bin/bash
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:529

/bin/sh
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:530

/bin/bash
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:530

/bin/sh
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:531

/bin/bash
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:531

/bin/sh
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:532

/bin/bash
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:532

/bin/sh
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:533

/bin/bash
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:533

/bin/sh
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:534

/bin/bash
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:534

/bin/sh
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:535

/bin/bash
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:535

/bin/sh
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:536

/bin/bash
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:536

/bin/sh
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:537

/bin/bash
sh -c "|��#j��ʊ֠ �6�Fy��4(3"
1⤵
PID:537

/bin/sh
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:538

/bin/bash
sh -c "|��#j��ʃF`�iC\$��^�"
1⤵
PID:538

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:654

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:654

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:657

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:657

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:660

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:660

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:663

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:663

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:666

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:666

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:669

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:669

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:672

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:672

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:675

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:675

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:710

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:710

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:713

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:713

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:716

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:716

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:719

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:719

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:724

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:724

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:727

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:727

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:730

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:730

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:733

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:733

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:741

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:741

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:744

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:744

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:747

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:747

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:750

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:750

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:755

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:755

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:758

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:758

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:761

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:761

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:764

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:764

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:768

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:768

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:771

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:771

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:774

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:774

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:777

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:777

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:788

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:788

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:791

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:791

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:794

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:794

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:797

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:797

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:800

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:800

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:803

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:803

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:806

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:806

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:809

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:809

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:814

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:814

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:817

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:817

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:820

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:820

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:823

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:823

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:828

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:828

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:831

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:831

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:834

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:834

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:837

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:837

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:840

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:840

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:843

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:843

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:846

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:846

/bin/sh
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:849

/bin/bash
sh -c "�;^C��zH!��d�[A��"
1⤵
PID:849

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy