Resubmissions
07-06-2023 15:18
230607-sp2l7acb33 807-06-2023 15:18
230607-sppydscb27 807-06-2023 15:17
230607-sn4p6aca94 10Analysis
-
max time kernel
129s -
max time network
151s -
platform
macos_amd64 -
resource
macos-20220504-en -
resource tags
-
submitted
07-06-2023 15:17
General
-
Target
https://www.bing.com/ck/a?!&&p=0c09bb6ab2cf155dJmltdHM9MTY4NjA5NjAwMCZpZ3VpZD0xNTQ1NWMwOS1iMjE5LTYwZTEtM2RhMi00ZWNiYjNkOTYxOTEmaW5zaWQ9NTQwNA&ptn=3&hsh=3&fclid=15455c09-b219-60e1-3da2-4ecbb3d96191&u=a1aHR0cHM6Ly9wbmNjLm9yZy5ucC92YWNhbmN5LWFubm91bmNlbWVudC8#c2FyaXRhLmxvdWlzQGxlZGNvci5jb20=
Score
1/10
Malware Config
Signatures
Processes
-
/usr/sbin/spctl/usr/sbin/spctl --test-devid-status1⤵
-
/bin/shsh -c "sudo /bin/zsh -c \"/Applications/Google\\ Chrome.app/Contents/MacOS/Google\\ Chrome --new-window https://www.bing.com/ck/a?!&&p=0c09bb6ab2cf155dJmltdHM9MTY4NjA5NjAwMCZpZ3VpZD0xNTQ1NWMwOS1iMjE5LTYwZTEtM2RhMi00ZWNiYjNkOTYxOTEmaW5zaWQ9NTQwNA&ptn=3&hsh=3&fclid=15455c09-b219-60e1-3da2-4ecbb3d96191&u=a1aHR0cHM6Ly9wbmNjLm9yZy5ucC92YWNhbmN5LWFubm91bmNlbWVudC8#c2FyaXRhLmxvdWlzQGxlZGNvci5jb20=\""1⤵
-
/bin/bashsh -c "sudo /bin/zsh -c \"/Applications/Google\\ Chrome.app/Contents/MacOS/Google\\ Chrome --new-window https://www.bing.com/ck/a?!&&p=0c09bb6ab2cf155dJmltdHM9MTY4NjA5NjAwMCZpZ3VpZD0xNTQ1NWMwOS1iMjE5LTYwZTEtM2RhMi00ZWNiYjNkOTYxOTEmaW5zaWQ9NTQwNA&ptn=3&hsh=3&fclid=15455c09-b219-60e1-3da2-4ecbb3d96191&u=a1aHR0cHM6Ly9wbmNjLm9yZy5ucC92YWNhbmN5LWFubm91bmNlbWVudC8#c2FyaXRhLmxvdWlzQGxlZGNvci5jb20=\""1⤵
-
/bin/bashsh -c "sudo /bin/zsh -c \"/Applications/Google\\ Chrome.app/Contents/MacOS/Google\\ Chrome --new-window https://www.bing.com/ck/a?!&&p=0c09bb6ab2cf155dJmltdHM9MTY4NjA5NjAwMCZpZ3VpZD0xNTQ1NWMwOS1iMjE5LTYwZTEtM2RhMi00ZWNiYjNkOTYxOTEmaW5zaWQ9NTQwNA&ptn=3&hsh=3&fclid=15455c09-b219-60e1-3da2-4ecbb3d96191&u=a1aHR0cHM6Ly9wbmNjLm9yZy5ucC92YWNhbmN5LWFubm91bmNlbWVudC8#c2FyaXRhLmxvdWlzQGxlZGNvci5jb20=\""1⤵
-
/usr/bin/sudosudo /bin/zsh -c "/Applications/Google\\ Chrome.app/Contents/MacOS/Google\\ Chrome --new-window https://www.bing.com/ck/a?!&&p=0c09bb6ab2cf155dJmltdHM9MTY4NjA5NjAwMCZpZ3VpZD0xNTQ1NWMwOS1iMjE5LTYwZTEtM2RhMi00ZWNiYjNkOTYxOTEmaW5zaWQ9NTQwNA&ptn=3&hsh=3&fclid=15455c09-b219-60e1-3da2-4ecbb3d96191&u=a1aHR0cHM6Ly9wbmNjLm9yZy5ucC92YWNhbmN5LWFubm91bmNlbWVudC8#c2FyaXRhLmxvdWlzQGxlZGNvci5jb20="1⤵
-
/usr/bin/sudosudo /bin/zsh -c "/Applications/Google\\ Chrome.app/Contents/MacOS/Google\\ Chrome --new-window https://www.bing.com/ck/a?!&&p=0c09bb6ab2cf155dJmltdHM9MTY4NjA5NjAwMCZpZ3VpZD0xNTQ1NWMwOS1iMjE5LTYwZTEtM2RhMi00ZWNiYjNkOTYxOTEmaW5zaWQ9NTQwNA&ptn=3&hsh=3&fclid=15455c09-b219-60e1-3da2-4ecbb3d96191&u=a1aHR0cHM6Ly9wbmNjLm9yZy5ucC92YWNhbmN5LWFubm91bmNlbWVudC8#c2FyaXRhLmxvdWlzQGxlZGNvci5jb20="1⤵
-
/bin/zsh/bin/zsh -c "/Applications/Google\\ Chrome.app/Contents/MacOS/Google\\ Chrome --new-window https://www.bing.com/ck/a?!&&p=0c09bb6ab2cf155dJmltdHM9MTY4NjA5NjAwMCZpZ3VpZD0xNTQ1NWMwOS1iMjE5LTYwZTEtM2RhMi00ZWNiYjNkOTYxOTEmaW5zaWQ9NTQwNA&ptn=3&hsh=3&fclid=15455c09-b219-60e1-3da2-4ecbb3d96191&u=a1aHR0cHM6Ly9wbmNjLm9yZy5ucC92YWNhbmN5LWFubm91bmNlbWVudC8#c2FyaXRhLmxvdWlzQGxlZGNvci5jb20="2⤵
-
/bin/zsh/bin/zsh -c "/Applications/Google\\ Chrome.app/Contents/MacOS/Google\\ Chrome --new-window https://www.bing.com/ck/a?!&&p=0c09bb6ab2cf155dJmltdHM9MTY4NjA5NjAwMCZpZ3VpZD0xNTQ1NWMwOS1iMjE5LTYwZTEtM2RhMi00ZWNiYjNkOTYxOTEmaW5zaWQ9NTQwNA&ptn=3&hsh=3&fclid=15455c09-b219-60e1-3da2-4ecbb3d96191&u=a1aHR0cHM6Ly9wbmNjLm9yZy5ucC92YWNhbmN5LWFubm91bmNlbWVudC8#c2FyaXRhLmxvdWlzQGxlZGNvci5jb20="2⤵
-
/usr/bin/syslog/usr/bin/syslog -s -k com.apple.message.domain com.apple.security.assessment.current_state com.apple.message.signature "assessments enabled" com.apple.message.signature2 "devid enabled" Message "Gatekeeper state assessments enabled/devid enabled"1⤵