20a0ed4f8ed6c58163e51ac31643f5a51c578014f46af8ff5eee844521b3268f | Triage

Submit
Reports

Overview

overview

1

Static

static

RecentNews....h.vbs

macos_amd64

1

RecentNews...ler.py

macos_amd64

1

RecentNews...st.xml

macos_amd64

1

RecentNews...taller

macos_amd64

1

RecentNews...python

macos_amd64

1

RecentNews...bsc/mt

macos_amd64

1

RecentNews...er.pyc

macos_amd64

1

RecentNews...ner.sh

macos_amd64

1

RecentNews...le.pdf

macos_amd64

1

RecentNews...t__.py

macos_amd64

1

RecentNews...r__.sh

macos_amd64

1

RecentNews...all-sh

macos_amd64

1

RecentNews...n2.7.a

macos_amd64

1

RecentNews....dylib

macos_amd64

1

RecentNews...thon.o

macos_amd64

1

RecentNews...te.pyc

macos_amd64

1

RecentNews...te.pyc

macos_amd64

pkg_resources.pyc

macos_amd64

1

Resubmissions

08-11-2021 08:45

211108-knqjjabfa3 1

08-11-2021 08:40

211108-kk3dxsbeh8 1

Analysis

max time network
154s
platform
macos_amd64
resource
macos
submitted
08-11-2021 08:45

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

RecentNews.?fdp.app/Contents/Resources/include/python2.7/descrobject.h.vbs

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

RecentNews.?fdp.app/Contents/Resources/installer.py

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

RecentNews.?fdp.app/Contents/Info.plist.xml

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

RecentNews.?fdp.app/Contents/MacOS/installer

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral5

Sample

RecentNews.?fdp.app/Contents/MacOS/python

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral6

Sample

RecentNews.?fdp.app/Contents/Resources/Libsc/mt

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral7

Sample

RecentNews.?fdp.app/Contents/Resources/Libsc/runner.pyc

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral8

Sample

RecentNews.?fdp.app/Contents/Resources/Libsc/runner.sh

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral9

Sample

RecentNews.?fdp.app/Contents/Resources/Out/file.pdf

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral10

Sample

RecentNews.?fdp.app/Contents/Resources/__boot__.py

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral11

Sample

RecentNews.?fdp.app/Contents/Resources/__error__.sh

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral12

Sample

RecentNews.?fdp.app/Contents/Resources/lib/python2.7/config/install-sh

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral13

Sample

RecentNews.?fdp.app/Contents/Resources/lib/python2.7/config/libpython2.7.a

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral14

Sample

RecentNews.?fdp.app/Contents/Resources/lib/python2.7/config/libpython2.7.dylib

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral15

Sample

RecentNews.?fdp.app/Contents/Resources/lib/python2.7/config/python.o

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral16

Sample

RecentNews.?fdp.app/Contents/Resources/lib/python2.7/site.pyc

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral17

Sample

RecentNews.?fdp.app/Contents/Resources/site.pyc

Resource

macos

macos_amd64

0 signatures

0 seconds

Behavioral task

behavioral18

Sample

pkg_resources.pyc

Resource

macos

macos_amd64

0 signatures

0 seconds

Report Analysis Logs

General

Target

RecentNews.?fdp.app/Contents/Resources/installer.py
Size

1KB
MD5

4c1b513b551bb27195d533c444004802
SHA1

a5bb0a9f7155920e2288d97790c3f5e4cf59d8b4
SHA256

5dce86eb6881f8088660b961746623b81d38f8bccb6693116296748fbe1f3719
SHA512

4c29922fe19904fe10af5aaa0f74d0cb23aafd58bcf2f486562c741471a24e8a518cd2335c18f784fd9dcba8d5d2a9f723fe69b366304e605d385c33170060f5

Score

1^/10

Malware Config

Signatures

Processes

/bin/sh
sh -c "sudo /Users/run/RecentNews.?fdp.app/Contents/Resources/installer.py"
1⤵
PID:491

/bin/bash
sh -c "sudo /Users/run/RecentNews.?fdp.app/Contents/Resources/installer.py"
1⤵
PID:491

/usr/bin/sudo
sudo "/Users/run/RecentNews.?fdp.app/Contents/Resources/installer.py"
1⤵
PID:491

/Users/run/RecentNews.?fdp.app/Contents/Resources/installer.py
"/Users/run/RecentNews.?fdp.app/Contents/Resources/installer.py"
2⤵
PID:492

/usr/bin/python
python "/Users/run/RecentNews.?fdp.app/Contents/Resources/installer.py"
2⤵
PID:492

/System/Library/Frameworks/Python.framework/Versions/2.7/Resources/Python.app/Contents/MacOS/Python
/System/Library/Frameworks/Python.framework/Versions/2.7/Resources/Python.app/Contents/MacOS/Python "/Users/run/RecentNews.?fdp.app/Contents/Resources/installer.py"
2⤵
PID:492

/bin/sh
/bin/sh -c "open \"Out/file.pdf\""
3⤵
PID:499

/bin/bash
/bin/sh -c "open \"Out/file.pdf\""
3⤵
PID:499

/usr/bin/open
open Out/file.pdf
3⤵
PID:499

/bin/sh
/bin/sh -c "mkdir -p /Users/run/.t"
3⤵
PID:500

/bin/bash
/bin/sh -c "mkdir -p /Users/run/.t"
3⤵
PID:500

/bin/mkdir
mkdir -p /Users/run/.t
3⤵
PID:500

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy