Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

Payload/Ze...roller

macos-10.15-amd64

1

Payload/Ze...bImage

macos-10.15-amd64

1

Payload/Ze.../Zebra

macos-10.15-amd64

1

Payload/Ze...s.html

windows7-x64

1

Payload/Ze...s.html

windows10-2004-x64

1

Payload/Ze...min.js

windows7-x64

1

Payload/Ze...min.js

windows10-2004-x64

1

Payload/Ze...n.html

windows7-x64

1

Payload/Ze...n.html

windows10-2004-x64

1

Analysis

  • max time kernel
    130s
  • max time network
    152s
  • platform
    macos_amd64
  • resource
    macos-20220504-en
  • resource tags

    arch:amd64arch:i386image:macos-20220504-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    07/03/2023, 00:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Payload/Zebra.app/Frameworks/LNPopupController.framework/LNPopupController

  • Size

    2.8MB

  • MD5

    80dada91a6b432aec963bda317a8cfc1

  • SHA1

    480774759a4cc0641b69f7a8cf09d1213b4fb97a

  • SHA256

    a7aab7103495c9f341bddfde16bc02a65cc153301f3ec2ef629fedb49a0f64d0

  • SHA512

    eb1d6ef2ed02d7d2859e4ded237debe122a3518cf4ba0aa5ba496240df11abb655162f94037de5b01c2f7695579b2cd291f7d88c18df177466f23165b5f56d28

  • SSDEEP

    49152:+UeWO6TcdwdkH8772Tc1LeaXOEaQdLZG7YUq1m1uuRFlE/gq+5kvWJj/Y+Gh0hcH:+TSdkH8772YkEaQddG7YUq1M3flE/gq1

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/Payload/Zebra.app/Frameworks/LNPopupController.framework/LNPopupController\""
    1⤵
      PID:517
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/Payload/Zebra.app/Frameworks/LNPopupController.framework/LNPopupController\""
      1⤵
        PID:517
      • /bin/bash
        sh -c "sudo /bin/zsh -c \"/Users/run/Payload/Zebra.app/Frameworks/LNPopupController.framework/LNPopupController\""
        1⤵
          PID:517
        • /usr/bin/sudo
          sudo /bin/zsh -c /Users/run/Payload/Zebra.app/Frameworks/LNPopupController.framework/LNPopupController
          1⤵
            PID:517
          • /usr/bin/sudo
            sudo /bin/zsh -c /Users/run/Payload/Zebra.app/Frameworks/LNPopupController.framework/LNPopupController
            1⤵
              PID:517
              • /bin/zsh
                /bin/zsh -c /Users/run/Payload/Zebra.app/Frameworks/LNPopupController.framework/LNPopupController
                2⤵
                  PID:518
                • /bin/zsh
                  /bin/zsh -c /Users/run/Payload/Zebra.app/Frameworks/LNPopupController.framework/LNPopupController
                  2⤵
                    PID:518
                  • /Users/run/Payload/Zebra.app/Frameworks/LNPopupController.framework/LNPopupController
                    /Users/run/Payload/Zebra.app/Frameworks/LNPopupController.framework/LNPopupController
                    2⤵
                      PID:518
                    • /Users/run/Payload/Zebra.app/Frameworks/LNPopupController.framework/LNPopupController
                      /Users/run/Payload/Zebra.app/Frameworks/LNPopupController.framework/LNPopupController
                      2⤵
                        PID:518

                    Network

                    MITRE ATT&CK Matrix

                    Replay Monitor

                    Loading Replay Monitor...

                    Downloads