005c66b92f2d170ce77c25a01d15061f47cc34bae8e7c75ae5a01a97617f1a73

Submit
Reports

Overview

overview

Static

static

Payload/In...ags.js

windows7-x64

Payload/In...ags.js

windows10-2004-x64

Payload/In...zes.js

windows7-x64

Payload/In...zes.js

windows10-2004-x64

Payload/In...ces.js

windows7-x64

Payload/In...ces.js

windows10-2004-x64

Payload/In...ash.js

windows7-x64

Payload/In...ash.js

windows10-2004-x64

Payload/In....dylib

macos-10.15-amd64

Payload/In...strate

macos-10.15-amd64

Payload/In...mework

macos-10.15-amd64

Payload/In...ma.xml

windows7-x64

Payload/In...ma.xml

windows10-2004-x64

Payload/In...ma.xml

windows7-x64

Payload/In...ma.xml

windows10-2004-x64

Payload/In...ma.xml

windows7-x64

Payload/In...ma.xml

windows10-2004-x64

Payload/In...ma.xml

windows7-x64

Payload/In...ma.xml

windows10-2004-x64

Payload/In...ma.xml

windows7-x64

Payload/In...ma.xml

windows10-2004-x64

Payload/In...ma.xml

windows7-x64

Payload/In...ma.xml

windows10-2004-x64

Payload/In....dylib

macos-10.15-amd64

Payload/In...mework

macos-10.15-amd64

Payload/In....dylib

macos-10.15-amd64

Payload/In....dylib

macos-10.15-amd64

Payload/In....dylib

macos-10.15-amd64

Payload/In....dylib

macos-10.15-amd64

Payload/In....dylib

macos-10.15-amd64

Payload/In....dylib

macos-10.15-amd64

Payload/In...fo.xml

windows7-x64

Analysis

max time kernel
139s
max time network
155s
platform
macos_amd64
resource
macos-20220504-en
resource tags

arch:amd64arch:i386image:macos-20220504-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
04-10-2022 17:27

Sharing

Copy URL

Twitter E-mail

Static task

static1

plugx

2 signatures

Behavioral task

behavioral1

Sample

Payload/Instagram.app/FBBrowserIntegrityLoggingKit.bundle/html-tags.js

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

Payload/Instagram.app/FBBrowserIntegrityLoggingKit.bundle/html-tags.js

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Payload/Instagram.app/FBBrowserIntegrityLoggingKit.bundle/images-sizes.js

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Payload/Instagram.app/FBBrowserIntegrityLoggingKit.bundle/images-sizes.js

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Payload/Instagram.app/FBBrowserIntegrityLoggingKit.bundle/resources.js

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Payload/Instagram.app/FBBrowserIntegrityLoggingKit.bundle/resources.js

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Payload/Instagram.app/FBBrowserIntegrityLoggingKit.bundle/sim-hash.js

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Payload/Instagram.app/FBBrowserIntegrityLoggingKit.bundle/sim-hash.js

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Payload/Instagram.app/Frameworks/Chertovski_InstaPlus_hack.dylib

Resource

macos-20220504-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Payload/Instagram.app/Frameworks/CydiaSubstrate.framework/CydiaSubstrate

Resource

macos-20220504-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/FBSharedFramework

Resource

macos-20220504-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/SQLiteSchemas/SQLiteDirectMessageSchema.xml

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral13

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/SQLiteSchemas/SQLiteDirectMessageSchema.xml

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/SQLiteSchemas/SQLiteDirectMetadataSchema.xml

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral15

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/SQLiteSchemas/SQLiteDirectMetadataSchema.xml

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral16

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/SQLiteSchemas/SQLiteDirectMutationsSchema.xml

Resource

win7-20220901-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral17

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/SQLiteSchemas/SQLiteDirectMutationsSchema.xml

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral18

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/SQLiteSchemas/SQLiteDirectQuickReplySchema.xml

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral19

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/SQLiteSchemas/SQLiteDirectQuickReplySchema.xml

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/SQLiteSchemas/SQLiteDirectThreadClientStateSchema.xml

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral21

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/SQLiteSchemas/SQLiteDirectThreadClientStateSchema.xml

Resource

win10v2004-20220901-en

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral22

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/SQLiteSchemas/SQLiteDirectThreadSchema.xml

Resource

win7-20220901-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral23

Sample

Payload/Instagram.app/Frameworks/FBSharedFramework.framework/SQLiteSchemas/SQLiteDirectThreadSchema.xml

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral24

Sample

Payload/Instagram.app/Frameworks/Hackogram.dylib

Resource

macos-20220504-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Payload/Instagram.app/Frameworks/IGPyTorchFramework.framework/IGPyTorchFramework

Resource

macos-20220504-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Payload/Instagram.app/Frameworks/InstaPlus.dylib

Resource

macos-20220504-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Payload/Instagram.app/Frameworks/Magic.dylib

Resource

macos-20220504-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Payload/Instagram.app/Frameworks/PlusForInstagram.dylib

Resource

macos-20220504-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Payload/Instagram.app/Frameworks/RIPass.dylib

Resource

macos-20220504-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Payload/Instagram.app/Frameworks/Rocket.dylib

Resource

macos-20220504-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Payload/Instagram.app/Frameworks/libmryipc.dylib

Resource

macos-20220504-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Payload/Instagram.app/Info.xml

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Report Analysis Logs

General

Target

Payload/Instagram.app/Frameworks/libmryipc.dylib
Size

73KB
MD5

4e149f81c2abda22ac82a43e07646a82
SHA1

f0a6c944cf07e8517128e6a3dca30f66fcd09051
SHA256

5e4d878a474615e5e1fb5d09ecf98f7b26264baba7023a8719c9390957a45fe8
SHA512

fed50746394ea2e7681a379edd4116d06868acbb8817edb3690be087ae280830b52628dfc3372d36a14a658beb0f9c9971cf3e006c823587741b234aa58243c4
SSDEEP

768:OjYGQkhN64rF+Fw0+F6lQuqou7RgbqgO:0QkhN64QkGbh

Score

1^/10

Malware Config

Signatures

Processes

/bin/sh
sh -c "sudo /bin/zsh -c \"/Users/run/Payload/Instagram.app/Frameworks/libmryipc.dylib\""
1⤵
PID:513

/bin/bash
sh -c "sudo /bin/zsh -c \"/Users/run/Payload/Instagram.app/Frameworks/libmryipc.dylib\""
1⤵
PID:513

/bin/bash
sh -c "sudo /bin/zsh -c \"/Users/run/Payload/Instagram.app/Frameworks/libmryipc.dylib\""
1⤵
PID:513

/usr/bin/sudo
sudo /bin/zsh -c /Users/run/Payload/Instagram.app/Frameworks/libmryipc.dylib
1⤵
PID:513

/usr/bin/sudo
sudo /bin/zsh -c /Users/run/Payload/Instagram.app/Frameworks/libmryipc.dylib
1⤵
PID:513

/bin/zsh
/bin/zsh -c /Users/run/Payload/Instagram.app/Frameworks/libmryipc.dylib
2⤵
PID:514

/bin/zsh
/bin/zsh -c /Users/run/Payload/Instagram.app/Frameworks/libmryipc.dylib
2⤵
PID:514

/Users/run/Payload/Instagram.app/Frameworks/libmryipc.dylib
/Users/run/Payload/Instagram.app/Frameworks/libmryipc.dylib
2⤵
PID:514

/Users/run/Payload/Instagram.app/Frameworks/libmryipc.dylib
/Users/run/Payload/Instagram.app/Frameworks/libmryipc.dylib
2⤵
PID:514

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads