Overview

overview

10

Static

static

1

adolf hitler.exe

windows10-2004-x64

10

adolf hitler.exe

macos-10.15-amd64

1

Analysis

  • max time kernel
    127s
  • max time network
    127s
  • platform
    macos_amd64
  • resource
    macos-20220504-en
  • resource tags

    arch:amd64arch:i386image:macos-20220504-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    23-03-2023 17:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    adolf hitler.exe

  • Size

    81KB

  • MD5

    62daa7edf22d47fe771da3087fc59219

  • SHA1

    bb0569f5cc93ba4fbff98aad87dbb9ec48417678

  • SHA256

    16680a2e8b11094a0c681edb9ba9bda7bbfdfb1216c4e4a3e9666798c134fd6e

  • SHA512

    6a5b231cb91ec3e6ffd2ab8eec7541fa9033b778e4fbb76eee710b0b7e7b8b17e61cf745ec8003242c3cfb498cdfc16b4b0f43d756e91c52ff6b701a007ef740

  • SSDEEP

    1536:gAlrJ/53OdSF43hs4B6GVd84yc0ctJronDhyU2VMYslIa1Z/YMIMxMm:gA5J48qdB6ex90cL7U25eYy7

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/adolf hitler.exe\""
    1⤵
      PID:493
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/adolf hitler.exe\""
      1⤵
        PID:493
      • /bin/bash
        sh -c "sudo /bin/zsh -c \"/Users/run/adolf hitler.exe\""
        1⤵
          PID:493
        • /usr/bin/sudo
          sudo /bin/zsh -c "/Users/run/adolf hitler.exe"
          1⤵
            PID:493
          • /usr/bin/sudo
            sudo /bin/zsh -c "/Users/run/adolf hitler.exe"
            1⤵
              PID:493
              • /bin/zsh
                /bin/zsh -c "/Users/run/adolf hitler.exe"
                2⤵
                  PID:494
                • /bin/zsh
                  /bin/zsh -c "/Users/run/adolf hitler.exe"
                  2⤵
                    PID:494
                  • /Users/run/adolf
                    /Users/run/adolf hitler.exe
                    2⤵
                      PID:494
                    • /Users/run/adolf
                      /Users/run/adolf hitler.exe
                      2⤵
                        PID:494
                    • /usr/sbin/spctl
                      /usr/sbin/spctl --test-devid-status
                      1⤵
                        PID:495
                      • /usr/bin/syslog
                        /usr/bin/syslog -s -k com.apple.message.domain com.apple.security.assessment.current_state com.apple.message.signature "assessments enabled" com.apple.message.signature2 "devid enabled" Message "Gatekeeper state assessments enabled/devid enabled"
                        1⤵
                          PID:497

                        Network

                        MITRE ATT&CK Matrix

                        Replay Monitor

                        Loading Replay Monitor...

                        Downloads