d7335d8168a3bf33a6e218190263426c64ce1cba0e4c39c22b2247a703da2fee | Triage

Submit
Reports

Overview

overview

Static

static

1548-74-0x...ry.exe

macos-10.15-amd64

1

Resubmissions

23-11-2022 20:48

221123-zlvg2agc5v 10

22-11-2022 08:10

221122-j2753aad4w 10

Analysis

max time kernel
691s
max time network
1683s
platform
macos_amd64
resource
macos-20220504-en
resource tags

arch:amd64arch:i386image:macos-20220504-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
23-11-2022 20:48

Sharing

Static task

static1

remotehost golden remcos

1 signatures

Behavioral task

behavioral1

Sample

1548-74-0x0000000000400000-0x000000000047F000-memory.exe

Resource

macos-20220504-en

macos-10.15-amd64

0 signatures

1800 seconds

Report Analysis Logs

General

Target

1548-74-0x0000000000400000-0x000000000047F000-memory.exe
Size

508KB
MD5

8517b7b8775ecdde50d50673f69b59ec
SHA1

dd755321cd0fc58b5c316766a1105bc82c09e268
SHA256

d7335d8168a3bf33a6e218190263426c64ce1cba0e4c39c22b2247a703da2fee
SHA512

898a784cd7174fa39847a8b92cd52482a1354f280501666539a88a892bf091c36ba80ccaa13377251a21a713ba76ebdedee8ce37505a6edd8f844ae293c92ce4
SSDEEP

6144:nt5sORmjlApc4Sl5vidotdjDAUgZVjso6k8BSGMV02LobDsAOZZgIXoc+gU:ntmox/Sl5vkKtAXjsoZ8wHonsfZgr

Score

1^/10

Malware Config

Signatures

Processes

/bin/sh
sh -c "sudo /bin/zsh -c \"/Users/run/1548-74-0x0000000000400000-0x000000000047F000-memory.exe\""
1⤵
PID:505

/bin/bash
sh -c "sudo /bin/zsh -c \"/Users/run/1548-74-0x0000000000400000-0x000000000047F000-memory.exe\""
1⤵
PID:505

/bin/bash
sh -c "sudo /bin/zsh -c \"/Users/run/1548-74-0x0000000000400000-0x000000000047F000-memory.exe\""
1⤵
PID:505

/usr/bin/sudo
sudo /bin/zsh -c /Users/run/1548-74-0x0000000000400000-0x000000000047F000-memory.exe
1⤵
PID:505

/usr/bin/sudo
sudo /bin/zsh -c /Users/run/1548-74-0x0000000000400000-0x000000000047F000-memory.exe
1⤵
PID:505

/bin/zsh
/bin/zsh -c /Users/run/1548-74-0x0000000000400000-0x000000000047F000-memory.exe
2⤵
PID:506

/bin/zsh
/bin/zsh -c /Users/run/1548-74-0x0000000000400000-0x000000000047F000-memory.exe
2⤵
PID:506

/Users/run/1548-74-0x0000000000400000-0x000000000047F000-memory.exe
/Users/run/1548-74-0x0000000000400000-0x000000000047F000-memory.exe
2⤵
PID:506

/Users/run/1548-74-0x0000000000400000-0x000000000047F000-memory.exe
/Users/run/1548-74-0x0000000000400000-0x000000000047F000-memory.exe
2⤵
PID:506

/usr/local/bin/hi
hi
1⤵
PID:522

/usr/local/bin/hi
hi
1⤵
PID:522

/usr/bin/hi
hi
1⤵
PID:522

/usr/bin/hi
hi
1⤵
PID:522

/bin/hi
hi
1⤵
PID:522

/bin/hi
hi
1⤵
PID:522

/usr/sbin/hi
hi
1⤵
PID:522

/usr/sbin/hi
hi
1⤵
PID:522

/sbin/hi
hi
1⤵
PID:522

/sbin/hi
hi
1⤵
PID:522

/usr/local/bin/l-
l- restart
1⤵
PID:523

/usr/local/bin/l-
l- restart
1⤵
PID:523

/usr/bin/l-
l- restart
1⤵
PID:523

/usr/bin/l-
l- restart
1⤵
PID:523

/bin/l-
l- restart
1⤵
PID:523

/bin/l-
l- restart
1⤵
PID:523

/usr/sbin/l-
l- restart
1⤵
PID:523

/usr/sbin/l-
l- restart
1⤵
PID:523

/sbin/l-
l- restart
1⤵
PID:523

/sbin/l-
l- restart
1⤵
PID:523

/usr/local/bin/restart
restart
1⤵
PID:524

/usr/local/bin/restart
restart
1⤵
PID:524

/usr/bin/restart
restart
1⤵
PID:524

/usr/bin/restart
restart
1⤵
PID:524

/bin/restart
restart
1⤵
PID:524

/bin/restart
restart
1⤵
PID:524

/usr/sbin/restart
restart
1⤵
PID:524

/usr/sbin/restart
restart
1⤵
PID:524

/sbin/restart
restart
1⤵
PID:524

/sbin/restart
restart
1⤵
PID:524

/usr/local/bin/system
system restart
1⤵
PID:528

/usr/local/bin/system
system restart
1⤵
PID:528

/usr/bin/system
system restart
1⤵
PID:528

/usr/bin/system
system restart
1⤵
PID:528

/bin/system
system restart
1⤵
PID:528

/bin/system
system restart
1⤵
PID:528

/usr/sbin/system
system restart
1⤵
PID:528

/usr/sbin/system
system restart
1⤵
PID:528

/sbin/system
system restart
1⤵
PID:528

/sbin/system
system restart
1⤵
PID:528

/usr/libexec/xpcproxy
xpcproxy com.apple.spindump
1⤵
PID:549

/usr/sbin/spindump
/usr/sbin/spindump
1⤵
PID:549

/usr/libexec/xpcproxy
xpcproxy com.apple.diagnosticd
1⤵
PID:550

/usr/libexec/diagnosticd
/usr/libexec/diagnosticd
1⤵
PID:550

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy