Overview

overview

7

Static

static

7

Keygen.exe

macos-10.15-amd64

1

out.exe

macos-10.15-amd64

1

Keygen.exe

macos-10.15-amd64

1

out.exe

macos-10.15-amd64

1

TBIView/keyhh.exe

macos-10.15-amd64

1

TBIView/setupdrv.exe

macos-10.15-amd64

1

TBIView/tbimsc.exe

macos-10.15-amd64

1

TBIView/tbiview.exe

macos-10.15-amd64

1

TBIView/tbiview64.exe

macos-10.15-amd64

1

TBIView/tbiviewa.exe

macos-10.15-amd64

1

TeraByteDrive.exe

macos-10.15-amd64

1

TeraByteDrivex64.exe

macos-10.15-amd64

1

Tlibr16.dll

macos-10.15-amd64

bartpe.exe

macos-10.15-amd64

1

bingburn.exe

macos-10.15-amd64

1

burncdcc.exe

macos-10.15-amd64

1

buylink.htm

macos-10.15-amd64

1

contextbackup.cmd

macos-10.15-amd64

1

keyhh.exe

macos-10.15-amd64

1

partinfg.exe

macos-10.15-amd64

1

partinfg64.exe

macos-10.15-amd64

1

phylock/ph...2k.exe

macos-10.15-amd64

1

phylock/ph...nt.exe

macos-10.15-amd64

1

phylock/ph...10.exe

macos-10.15-amd64

1

phylock/ph...64.exe

macos-10.15-amd64

1

phylock/ph...w7.exe

macos-10.15-amd64

1

phylock/ph...64.exe

macos-10.15-amd64

1

phylock/ph...64.exe

macos-10.15-amd64

1

phylock/ph...xp.exe

macos-10.15-amd64

1

phylock/readme.txt

macos-10.15-amd64

1

Analysis

  • max time kernel
    97s
  • max time network
    154s
  • platform
    macos_amd64
  • resource
    macos-20220504-en
  • resource tags

    arch:amd64arch:i386image:macos-20220504-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    30/05/2023, 10:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Keygen.exe

  • Size

    8KB

  • MD5

    59967663e288da8b450f5864767072f3

  • SHA1

    931919f082a061001f0e866a1c719314ed0855ed

  • SHA256

    3ebf591675024959ffa36fded3c4e49cb897e6374866e660147e2d6b8ccef316

  • SHA512

    06e71214ba7fb4d861dd8b9458bc55cbea1cdba4b3bc0f819c06572a25361481cc3d33acc0746d4393d7b4e5a2d037ad4cd2e555db9735dc29922d468e924152

  • SSDEEP

    192:nsr0ZM2vFqenyeM23O1/FkgvLD9dSpVzuCVZ7SO:XZpYheMNMQLDSDzu7O

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/Keygen.exe\""
    1⤵
      PID:503
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/Keygen.exe\""
      1⤵
        PID:503
      • /bin/bash
        sh -c "sudo /bin/zsh -c \"/Users/run/Keygen.exe\""
        1⤵
          PID:503
        • /usr/bin/sudo
          sudo /bin/zsh -c /Users/run/Keygen.exe
          1⤵
            PID:503
          • /usr/bin/sudo
            sudo /bin/zsh -c /Users/run/Keygen.exe
            1⤵
              PID:503
              • /bin/zsh
                /bin/zsh -c /Users/run/Keygen.exe
                2⤵
                  PID:520
                • /bin/zsh
                  /bin/zsh -c /Users/run/Keygen.exe
                  2⤵
                    PID:520
                  • /Users/run/Keygen.exe
                    /Users/run/Keygen.exe
                    2⤵
                      PID:520
                    • /Users/run/Keygen.exe
                      /Users/run/Keygen.exe
                      2⤵
                        PID:520

                    Network

                    MITRE ATT&CK Matrix

                    Replay Monitor

                    Loading Replay Monitor...

                    Downloads