Analysis
-
max time kernel
296s -
max time network
310s -
platform
macos_amd64 -
resource
macos-20220504-en -
resource tags
-
submitted
16/05/2023, 05:41
General
-
Target
Adobe_XD_v50_0_12_ARM-only_sice.dmg
-
Size
267.2MB
-
MD5
13141dc775ea81862a4aefdf78fa129d
-
SHA1
a6466f198f8e134777661cd714be7905fb434a7d
-
SHA256
06bb353dd505b2f35171313758edce42c6b292d8a15e3872d32e5b64669f516e
-
SHA512
1f36405c6033aa3233e113dbdbc2d41b20abbb32dc19503b182509a91dd2c9410fcf368d3c83abcc500ed24c469a52fb2e43c41c2b35b773ffe61f54cf71d585
-
SSDEEP
6291456:C1rsbn3ChtBbxr4zplmtB3Xgzf7pS+ALjR2d+lB4iKOgQZ3LF9037xl2dMecrtnc:PbnShIliBHgzfV7dJ63Lc3jppnc
Score
1/10
Malware Config
Signatures
Processes
-
/bin/shsh -c "sudo /bin/zsh -c \"open /Volumes/Adobe\\ XD\\ v50.0.12\\ ARM-only\\ [sice]/Install\\ SPRK_50.0.12-en_US-macarm64.app\""1⤵
-
/bin/bashsh -c "sudo /bin/zsh -c \"open /Volumes/Adobe\\ XD\\ v50.0.12\\ ARM-only\\ [sice]/Install\\ SPRK_50.0.12-en_US-macarm64.app\""1⤵
-
/bin/bashsh -c "sudo /bin/zsh -c \"open /Volumes/Adobe\\ XD\\ v50.0.12\\ ARM-only\\ [sice]/Install\\ SPRK_50.0.12-en_US-macarm64.app\""1⤵
-
/usr/bin/sudosudo /bin/zsh -c "open /Volumes/Adobe\\ XD\\ v50.0.12\\ ARM-only\\ [sice]/Install\\ SPRK_50.0.12-en_US-macarm64.app"1⤵
-
/usr/bin/sudosudo /bin/zsh -c "open /Volumes/Adobe\\ XD\\ v50.0.12\\ ARM-only\\ [sice]/Install\\ SPRK_50.0.12-en_US-macarm64.app"1⤵
-
/bin/zsh/bin/zsh -c "open /Volumes/Adobe\\ XD\\ v50.0.12\\ ARM-only\\ [sice]/Install\\ SPRK_50.0.12-en_US-macarm64.app"2⤵
-
-
/bin/zsh/bin/zsh -c "open /Volumes/Adobe\\ XD\\ v50.0.12\\ ARM-only\\ [sice]/Install\\ SPRK_50.0.12-en_US-macarm64.app"2⤵
-
-
/usr/libexec/xpcproxyxpcproxy com.apple.replayd1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.ReportMemoryException1⤵
-
/usr/libexec/replayd/usr/libexec/replayd1⤵
-
/usr/libexec/ReportMemoryException/usr/libexec/ReportMemoryException1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.installd1⤵
-
/System/Library/PrivateFrameworks/PackageKit.framework/Resources/installd/System/Library/PrivateFrameworks/PackageKit.framework/Resources/installd1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.storedownloadd1⤵
-
/System/Library/PrivateFrameworks/CommerceKit.framework/Versions/A/Resources/storedownloadd/System/Library/PrivateFrameworks/CommerceKit.framework/Versions/A/Resources/storedownloadd1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.system_installd1⤵
-
/System/Library/PrivateFrameworks/PackageKit.framework/Resources/system_installd/System/Library/PrivateFrameworks/PackageKit.framework/Resources/system_installd1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.Safari.CacheDeleteExtension 5301⤵
-
/Applications/Safari.app/Contents/PlugIns/CacheDeleteExtension.appex/Contents/MacOS/CacheDeleteExtension/Applications/Safari.app/Contents/PlugIns/CacheDeleteExtension.appex/Contents/MacOS/CacheDeleteExtension1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.PerformanceAnalysis.animationperfd1⤵
-
/System/Library/PrivateFrameworks/PerformanceAnalysis.framework/Versions/A/XPCServices/com.apple.PerformanceAnalysis.animationperfd.xpc/Contents/MacOS/com.apple.PerformanceAnalysis.animationperfd/System/Library/PrivateFrameworks/PerformanceAnalysis.framework/Versions/A/XPCServices/com.apple.PerformanceAnalysis.animationperfd.xpc/Contents/MacOS/com.apple.PerformanceAnalysis.animationperfd1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.quicklook.satellite.2B7604B4-6A83-4FEC-9E2E-23B190834B04 5451⤵
-
/System/Library/Frameworks/QuickLook.framework/Versions/A/XPCServices/QuickLookSatellite.xpc/Contents/MacOS/QuickLookSatellite/System/Library/Frameworks/QuickLook.framework/Versions/A/XPCServices/QuickLookSatellite.xpc/Contents/MacOS/QuickLookSatellite1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.quicklook.ui.helper1⤵
-
/System/Library/Frameworks/Quartz.framework/Frameworks/QuickLookUI.framework/Resources/QuickLookUIHelper.app/Contents/MacOS/QuickLookUIHelper/System/Library/Frameworks/Quartz.framework/Frameworks/QuickLookUI.framework/Resources/QuickLookUIHelper.app/Contents/MacOS/QuickLookUIHelper1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.XprotectFramework.AnalysisService 5201⤵
-
/System/Library/PrivateFrameworks/XprotectFramework.framework/Versions/A/XPCServices/XprotectService.xpc/Contents/MacOS/XprotectService/System/Library/PrivateFrameworks/XprotectFramework.framework/Versions/A/XPCServices/XprotectService.xpc/Contents/MacOS/XprotectService1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.ReportMemoryException1⤵
-
/usr/libexec/ReportMemoryException/usr/libexec/ReportMemoryException1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.bsd.dirhelper1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.xpc.launchd.oneshot.0x10000002.applet1⤵
-
/Volumes/Adobe XD v50.0.12 ARM-only [sice]/Install SPRK_50.0.12-en_US-macarm64.app/Contents/MacOS/applet"/Volumes/Adobe XD v50.0.12 ARM-only [sice]/Install SPRK_50.0.12-en_US-macarm64.app/Contents/MacOS/applet" -psn_0_1966561⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.helpviewer.13321⤵
-
/System/Library/CoreServices/HelpViewer.app/Contents/MacOS/HelpViewer/System/Library/CoreServices/HelpViewer.app/Contents/MacOS/HelpViewer1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.corespotlightservice.725FD30A-6064-6C02-CC51-5DDB8891B57E1⤵
-
/System/Library/Frameworks/CoreSpotlight.framework/CoreSpotlightService/System/Library/Frameworks/CoreSpotlight.framework/CoreSpotlightService1⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.xpc.launchd.oneshot.0x10000003.applet1⤵
-
/Volumes/Adobe XD v50.0.12 ARM-only [sice]/Install SPRK_50.0.12-en_US-macarm64.app/Contents/MacOS/applet"/Volumes/Adobe XD v50.0.12 ARM-only [sice]/Install SPRK_50.0.12-en_US-macarm64.app/Contents/MacOS/applet" -psn_0_2048501⤵