Overview

overview

1

Static

static

1

sample.html

macos-10.15-amd64

1

Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    macos_amd64
  • resource
    macos-20220504-en
  • resource tags

    arch:amd64arch:i386image:macos-20220504-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    31-03-2023 16:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    13KB

  • MD5

    57d3e2d209c559dfc4235adb47524ced

  • SHA1

    14d227a05c92e1717ac27f91a1a2d796b6a8d333

  • SHA256

    189dfdd2c06fc2965f8f302bb55122cb7b0a101c26bd4947471b9e2aea7d6302

  • SHA512

    44e330baa4d06edc1029b0abc7d221f6f18f9179659eae5eae90455dffbf758c2b7f9b720a46a6122c9351dde2e0dc9175157638b2811eab35f2f8c7b358de4a

  • SSDEEP

    384:RugAbV1LeNNPWgT498jvHyrVc9WrWyPotfqCquqYgh:RpAbV1LwWSGcHyrS92xPotNqZp

Score
1/10

Malware Config

Signatures

Processes

  • /usr/libexec/xpcproxy
    xpcproxy com.apple.pluginkit.pkreporter
    1⤵
      PID:487
    • /usr/libexec/pkreporter
      /usr/libexec/pkreporter
      1⤵
        PID:487
      • /usr/sbin/spctl
        /usr/sbin/spctl --status
        1⤵
          PID:488
        • /usr/sbin/spctl
          /usr/sbin/spctl --test-devid-status
          1⤵
            PID:490
          • /usr/bin/syslog
            /usr/bin/syslog -s -k com.apple.message.domain com.apple.security.assessment.current_state com.apple.message.signature "assessments enabled" com.apple.message.signature2 "devid enabled" Message "Gatekeeper state assessments enabled/devid enabled"
            1⤵
              PID:491
            • /bin/sh
              sh -c "sudo /bin/zsh -c \"/Users/run/sample.html\""
              1⤵
                PID:492
              • /bin/bash
                sh -c "sudo /bin/zsh -c \"/Users/run/sample.html\""
                1⤵
                  PID:492
                • /bin/bash
                  sh -c "sudo /bin/zsh -c \"/Users/run/sample.html\""
                  1⤵
                    PID:492
                  • /usr/bin/sudo
                    sudo /bin/zsh -c /Users/run/sample.html
                    1⤵
                      PID:492
                    • /usr/bin/sudo
                      sudo /bin/zsh -c /Users/run/sample.html
                      1⤵
                        PID:492
                        • /bin/zsh
                          /bin/zsh -c /Users/run/sample.html
                          2⤵
                            PID:498
                          • /bin/zsh
                            /bin/zsh -c /Users/run/sample.html
                            2⤵
                              PID:498
                            • /Users/run/sample.html
                              /Users/run/sample.html
                              2⤵
                                PID:498
                              • /Users/run/sample.html
                                /Users/run/sample.html
                                2⤵
                                  PID:498
                                • /bin/sh
                                  sh /Users/run/sample.html
                                  2⤵
                                    PID:498
                                  • /bin/sh
                                    sh /Users/run/sample.html
                                    2⤵
                                      PID:498
                                    • /bin/bash
                                      sh /Users/run/sample.html
                                      2⤵
                                        PID:498
                                      • /bin/bash
                                        sh /Users/run/sample.html
                                        2⤵
                                          PID:498

                                      Network

                                      MITRE ATT&CK Matrix

                                      Replay Monitor

                                      Loading Replay Monitor...

                                      Downloads