Overview

overview

1

Static

static

RecentNews....h.vbs

macos_amd64

1

RecentNews...ler.py

macos_amd64

1

RecentNews...st.xml

macos_amd64

1

RecentNews...taller

macos_amd64

1

RecentNews...python

macos_amd64

1

RecentNews...bsc/mt

macos_amd64

1

RecentNews...er.pyc

macos_amd64

1

RecentNews...ner.sh

macos_amd64

1

RecentNews...le.pdf

macos_amd64

1

RecentNews...t__.py

macos_amd64

1

RecentNews...r__.sh

macos_amd64

1

RecentNews...all-sh

macos_amd64

1

RecentNews...n2.7.a

macos_amd64

1

RecentNews....dylib

macos_amd64

1

RecentNews...thon.o

macos_amd64

1

RecentNews...te.pyc

macos_amd64

1

RecentNews...te.pyc

macos_amd64

pkg_resources.pyc

macos_amd64

1

Resubmissions

08-11-2021 08:45

211108-knqjjabfa3 1

08-11-2021 08:40

211108-kk3dxsbeh8 1

Analysis

  • max time network
    149s
  • platform
    macos_amd64
  • resource
    macos
  • submitted
    08-11-2021 08:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    RecentNews.?fdp.app/Contents/Resources/lib/python2.7/config/libpython2.7.dylib

  • Size

    2.5MB

  • MD5

    fa05806e4a3b634fd621b1efbebd3a7c

  • SHA1

    d6130fd2d9097cec00d3c80fd8ceede5a2a5eb00

  • SHA256

    6b0388aa64f1e31d86603309609fe295f650e66d518242375c483e1cf402d0b2

  • SHA512

    f610016e45a52e41418fef0be85c4b54b20b17460ed434b41b17f7ebf482d1c286afb1df0f035154f13f5fa8ad21bdbaa22578a9ddb9b99642344410dc6bbf19

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /Users/run/RecentNews.?fdp.app/Contents/Resources/lib/python2.7/config/libpython2.7."
    1⤵
      PID:491
    • /bin/bash
      sh -c "sudo /Users/run/RecentNews.?fdp.app/Contents/Resources/lib/python2.7/config/libpython2.7."
      1⤵
        PID:491
      • /usr/bin/sudo
        sudo "/Users/run/RecentNews.?fdp.app/Contents/Resources/lib/python2.7/config/libpython2.7."
        1⤵
          PID:491

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /private/var/db/sudo/ts/run
          MD5

          985e9db8d48185806c1646bee1f3a4bd

          SHA1

          2d4c0104f9dbd2e870d281910496d7d09da9100a

          SHA256

          05a416d30b930844e173403bd78cb7c5ee5dea2c9ec771ef374a850a225725aa

          SHA512

          bb2de798fb06772001893f65cbcdfdca2828d9fa339bf6edaae04c798330dfc7b849a0d58e8745961559c3fba83dceac5c37a5447c0265f883d4be53589de7c9

          Download Submit