5517d2021b44c94937f4dc15596a076447d3459801bce531ba80ef2daa2980b1

Resubmissions

19/09/2022, 07:01

220919-htcthsdcd3 1

19/09/2022, 06:42

220919-hgb2fscfc7 1

Analysis

max time kernel
74s
max time network
120s
platform
macos_amd64
resource
macos-20220504-en
resource tags

arch:amd64arch:i386image:macos-20220504-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
19/09/2022, 06:42

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

All2MP3_Installer.dmg
Size

1.3MB
MD5

f8dc06d8633102562b5350844458282d
SHA1

fcebf1d6b973cfeb182e86f05294d94761278109
SHA256

5517d2021b44c94937f4dc15596a076447d3459801bce531ba80ef2daa2980b1
SHA512

d31ee88e150b087cc7ede1456bde6f7b9dcfaa98048e4a2c8665429b76450553051ba452673c5304f9bc5fcf6d8a3ae235791b8bdf2fd90d9d8920539291c981
SSDEEP

24576:ld2mrVAfHIH4yKx5sl44G/GdBerF2k4cTotIuPprl3srM+mrmx4:ldJxA/qKx5sl4d/2epj4WomgY5mO

Score

1^/10

Malware Config

Signatures

/bin/sh
sh -c "sudo /bin/zsh -c \"open /Volumes/Installer/Installer.app\""
1⤵
PID:532

/bin/bash
sh -c "sudo /bin/zsh -c \"open /Volumes/Installer/Installer.app\""
1⤵
PID:532

/bin/bash
sh -c "sudo /bin/zsh -c \"open /Volumes/Installer/Installer.app\""
1⤵
PID:532

/usr/bin/sudo
sudo /bin/zsh -c "open /Volumes/Installer/Installer.app"
1⤵
PID:532

/usr/bin/sudo
sudo /bin/zsh -c "open /Volumes/Installer/Installer.app"
1⤵
PID:532
- /bin/zsh
  /bin/zsh -c "open /Volumes/Installer/Installer.app"
  2⤵
  PID:533
- /bin/zsh
  /bin/zsh -c "open /Volumes/Installer/Installer.app"
  2⤵
  PID:533
- /usr/bin/open
  open /Volumes/Installer/Installer.app
  2⤵
  PID:533
- /usr/bin/open
  open /Volumes/Installer/Installer.app
  2⤵
  PID:533

/usr/libexec/xpcproxy
xpcproxy com.categorical.cochairman.2300
1⤵
PID:534

/Volumes/Installer/Installer.app/Contents/MacOS/eldest
/Volumes/Installer/Installer.app/Contents/MacOS/eldest
1⤵
PID:534

/usr/bin/hdiutil
/usr/bin/hdiutil info -plist
1⤵
PID:538

/usr/bin/hdiutil
/usr/bin/hdiutil info -plist
1⤵
PID:539

/bin/sh
/bin/sh -c "ioreg -l | grep -e 'USB Vendor Name'"
1⤵
PID:540

/bin/bash
/bin/sh -c "ioreg -l | grep -e 'USB Vendor Name'"
1⤵
PID:540

/bin/bash
/bin/sh -c "ioreg -l | grep -e 'USB Vendor Name'"
1⤵
PID:540
- /usr/sbin/ioreg
  ioreg -l
  2⤵
  PID:541
- /usr/sbin/ioreg
  ioreg -l
  2⤵
  PID:541
- /usr/bin/grep
  grep -e "USB Vendor Name"
  2⤵
  PID:542
- /usr/bin/grep
  grep -e "USB Vendor Name"
  2⤵
  PID:542

/bin/sh
/bin/sh -c "codesign -dvv \"\$BUNDLE_PATH\" 2>&1 | grep -a \"Authority=Developer ID Application:\" | xargs echo -n"
1⤵
PID:543

/bin/bash
/bin/sh -c "codesign -dvv \"\$BUNDLE_PATH\" 2>&1 | grep -a \"Authority=Developer ID Application:\" | xargs echo -n"
1⤵
PID:543

/bin/bash
/bin/sh -c "codesign -dvv \"\$BUNDLE_PATH\" 2>&1 | grep -a \"Authority=Developer ID Application:\" | xargs echo -n"
1⤵
PID:543
- /usr/bin/grep
  grep -a "Authority=Developer ID Application:"
  2⤵
  PID:545
- /usr/bin/grep
  grep -a "Authority=Developer ID Application:"
  2⤵
  PID:545
- /usr/bin/codesign
  codesign -dvv /Volumes/Installer/Installer.app
  2⤵
  PID:544
- /usr/bin/codesign
  codesign -dvv /Volumes/Installer/Installer.app
  2⤵
  PID:544
- /usr/bin/xargs
  xargs echo -n
  2⤵
  PID:546
- /usr/bin/xargs
  xargs echo -n
  2⤵
  PID:546

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/private/var/folders/pq/yy2b5ptn4cz739jgclj4m1wm0000gp/C/mds/mdsDirectory.db

Filesize
47KB

MD5
0e4a0d1ceb2af6f0f8d0167ce77be2d3

SHA1
414ba4c1dc5fc8bf53d550e296fd6f5ad669918c

SHA256
cca093bcfc65e25dd77c849866e110df72526dffbe29d76e11e29c7d888a4030

SHA512
1dc5282d27c49a4b6f921ba5dfc88b8c1d32289df00dd866f9ac6669a5a8d99afeda614bffc7cf61a44375ae73e09cd52606b443b63636977c9cd2ef4fa68a20

Download Submit
/private/var/folders/pq/yy2b5ptn4cz739jgclj4m1wm0000gp/C/mds/mdsDirectory.db

Filesize
47KB

MD5
0e4a0d1ceb2af6f0f8d0167ce77be2d3

SHA1
414ba4c1dc5fc8bf53d550e296fd6f5ad669918c

SHA256
cca093bcfc65e25dd77c849866e110df72526dffbe29d76e11e29c7d888a4030

SHA512
1dc5282d27c49a4b6f921ba5dfc88b8c1d32289df00dd866f9ac6669a5a8d99afeda614bffc7cf61a44375ae73e09cd52606b443b63636977c9cd2ef4fa68a20

Download Submit
/private/var/folders/pq/yy2b5ptn4cz739jgclj4m1wm0000gp/C/mds/mdsDirectory.db_

Filesize
47KB

MD5
0e4a0d1ceb2af6f0f8d0167ce77be2d3

SHA1
414ba4c1dc5fc8bf53d550e296fd6f5ad669918c

SHA256
cca093bcfc65e25dd77c849866e110df72526dffbe29d76e11e29c7d888a4030

SHA512
1dc5282d27c49a4b6f921ba5dfc88b8c1d32289df00dd866f9ac6669a5a8d99afeda614bffc7cf61a44375ae73e09cd52606b443b63636977c9cd2ef4fa68a20

Download Submit
/private/var/folders/pq/yy2b5ptn4cz739jgclj4m1wm0000gp/C/mds/mdsObject.db

Filesize
4KB

MD5
d3a1859e6ec593505cc882e6def48fc8

SHA1
f8e6728e3e9de477a75706faa95cead9ce13cb32

SHA256
3ebafa97782204a4a1d75cfec22e15fcdeab45b65bab3b3e65508707e034a16c

SHA512
ea2a749b105759ea33408186b417359deffb4a3a5ed0533cb26b459c16bb3524d67ede5c9cf0d5098921c0c0a9313fb9c2672f1e5ba48810eda548fa3209e818

Download Submit
/private/var/folders/pq/yy2b5ptn4cz739jgclj4m1wm0000gp/C/mds/mdsObject.db_

Filesize
4KB

MD5
d3a1859e6ec593505cc882e6def48fc8

SHA1
f8e6728e3e9de477a75706faa95cead9ce13cb32

SHA256
3ebafa97782204a4a1d75cfec22e15fcdeab45b65bab3b3e65508707e034a16c

SHA512
ea2a749b105759ea33408186b417359deffb4a3a5ed0533cb26b459c16bb3524d67ede5c9cf0d5098921c0c0a9313fb9c2672f1e5ba48810eda548fa3209e818

Download Submit
/private/var/folders/pq/yy2b5ptn4cz739jgclj4m1wm0000gp/T/All2MP3_Installer.dmg.html

Filesize
46KB

MD5
981deb03daa8a71c9d8b3957b960538b

SHA1
2e8b1625e5ee0c10caf55bdfd4c96a5a6d993365

SHA256
81b87ce346c24321bcffc6b75a9c3304a33e1ef60cb7ee0e2f16ce26b252bb98

SHA512
dfa8a80ab18502e381ce0df1ada711a4a7b6189a9c60f8aff3616d3af2ed0b7c399333c77aaf8c2b303a446f5a75b2782951136b64100fafbce292eb14a4d16c

Download Submit
/private/var/folders/pq/yy2b5ptn4cz739jgclj4m1wm0000gp/T/All2MP3_Installer.dmg.html

Filesize
46KB

MD5
80e16ee81a5b42dabc49d2fad4b60e5f

SHA1
1ddd3814d1029a6816c4bc96305b7cdbc6fef1b0

SHA256
ca512af1585d5f602d33ab276d3a899d80317e7eb89dbe180d35c9218045aab0

SHA512
3759065c3051852edc6a3caf9973c91cd26a9f78fec6889808155ac2625f4ed94d39be512ae926ba41f0cc6b28d78464a842e70893ea18d93e1c58d175824487

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads