b3e5d6395f0bc4e35fd22aac7e4aabc84404f3c54cd700425b1893fe31385277

Analysis

max time kernel
140s
max time network
145s
platform
macos_amd64
resource
macos-20220504-en
resource tags

arch:amd64arch:i386image:macos-20220504-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
04/10/2023, 18:20

Target

b3e5d6395f0bc4e35fd22aac7e4aabc84404f3c54cd700425b1893fe31385277_JC.dmg
Size

488KB
MD5

1b7f9d92fe28a588fe0af3228a39b3e9
SHA1

934c10da3b1264bc9fbeda189c03931e0c713580
SHA256

b3e5d6395f0bc4e35fd22aac7e4aabc84404f3c54cd700425b1893fe31385277
SHA512

15e19561d698e4e1fbdd83064ffc9ea7e98210fe947509ab6baa295c603970b438d7aa2044c34e6d459249759794f69d9be48fd34ce95ce8e75d1b2e86424bff
SSDEEP

12288:JMGiNz/PUAg4Nq474U1ue65dRDwdFBg+3oEpVQaoKk:mNzkyqi4UQ7m3BRo5ao

Score

1^/10

/bin/sh
sh -c "sudo /bin/zsh -c \"open /Volumes/source_folder/Installer_v2.1.app\""
1⤵
PID:528

/bin/bash
sh -c "sudo /bin/zsh -c \"open /Volumes/source_folder/Installer_v2.1.app\""
1⤵
PID:528

/bin/bash
sh -c "sudo /bin/zsh -c \"open /Volumes/source_folder/Installer_v2.1.app\""
1⤵
PID:528

/usr/bin/sudo
sudo /bin/zsh -c "open /Volumes/source_folder/Installer_v2.1.app"
1⤵
PID:528

/usr/bin/sudo
sudo /bin/zsh -c "open /Volumes/source_folder/Installer_v2.1.app"
1⤵
PID:528
- /bin/zsh
  /bin/zsh -c "open /Volumes/source_folder/Installer_v2.1.app"
  2⤵
  PID:529
- /bin/zsh
  /bin/zsh -c "open /Volumes/source_folder/Installer_v2.1.app"
  2⤵
  PID:529
- /usr/bin/open
  open /Volumes/source_folder/Installer_v2.1.app
  2⤵
  PID:529
- /usr/bin/open
  open /Volumes/source_folder/Installer_v2.1.app
  2⤵
  PID:529

/usr/libexec/xpcproxy
xpcproxy com.apple.xpc.launchd.oneshot.0x10000002.Installer_v2.1
1⤵
PID:531

/Volumes/source_folder/Installer_v2.1.app/Contents/MacOS/Installer_v2.1
/Volumes/source_folder/Installer_v2.1.app/Contents/MacOS/Installer_v2.1 -psn_0_159783
1⤵
PID:531

/bin/sh
sh -c "osascript -e 'display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer'"
1⤵
PID:534

/bin/bash
sh -c "osascript -e 'display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer'"
1⤵
PID:534

/bin/bash
sh -c "osascript -e 'display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer'"
1⤵
PID:534

/usr/bin/osascript
osascript -e "display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer"
1⤵
PID:534

/usr/bin/osascript
osascript -e "display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer"
1⤵
PID:534