eca5fe0ec20d49eb62654ef793aa15d27d7bcccb55a1a27c8130ccd373ccb8fc

Analysis

max time kernel
132s
max time network
141s
platform
macos_amd64
resource
macos-20220504-en
resource tags

arch:amd64arch:i386image:macos-20220504-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
04/10/2023, 19:00

Target

eca5fe0ec20d49eb62654ef793aa15d27d7bcccb55a1a27c8130ccd373ccb8fc_JC.dmg
Size

500KB
MD5

f84759fa42b6d89bc28dc8d707bf5025
SHA1

b332cbad93f308a93fb3ff6d6df64d34053e224c
SHA256

eca5fe0ec20d49eb62654ef793aa15d27d7bcccb55a1a27c8130ccd373ccb8fc
SHA512

63f059001d08e67b13b1594666f9823e152e07b12288ae51876db71ea0fb59dbab3d308721ef6b95b0e6cdf2b22f843f70e0152539cc2090cb39111c0b9cbe29
SSDEEP

12288:WXoJfAycbXpNU0bamorfNq4dYU1Uu65dRvwB1na+XyEfrWEN7wr:U9hbjtbrorFq0YUKLaXn3yhE

Score

1^/10

/bin/sh
sh -c "sudo /bin/zsh -c \"open /Volumes/source_folder/AppleApp.app\""
1⤵
PID:532

/bin/bash
sh -c "sudo /bin/zsh -c \"open /Volumes/source_folder/AppleApp.app\""
1⤵
PID:532

/bin/bash
sh -c "sudo /bin/zsh -c \"open /Volumes/source_folder/AppleApp.app\""
1⤵
PID:532

/usr/bin/sudo
sudo /bin/zsh -c "open /Volumes/source_folder/AppleApp.app"
1⤵
PID:532

/usr/bin/sudo
sudo /bin/zsh -c "open /Volumes/source_folder/AppleApp.app"
1⤵
PID:532
- /bin/zsh
  /bin/zsh -c "open /Volumes/source_folder/AppleApp.app"
  2⤵
  PID:533
- /bin/zsh
  /bin/zsh -c "open /Volumes/source_folder/AppleApp.app"
  2⤵
  PID:533
- /usr/bin/open
  open /Volumes/source_folder/AppleApp.app
  2⤵
  PID:533
- /usr/bin/open
  open /Volumes/source_folder/AppleApp.app
  2⤵
  PID:533

/usr/libexec/xpcproxy
xpcproxy com.apple.xpc.launchd.oneshot.0x10000002.AppleApp
1⤵
PID:535

/Volumes/source_folder/AppleApp.app/Contents/MacOS/AppleApp
/Volumes/source_folder/AppleApp.app/Contents/MacOS/AppleApp -psn_0_172074
1⤵
PID:535

/bin/sh
sh -c "osascript -e 'display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer'"
1⤵
PID:538

/bin/bash
sh -c "osascript -e 'display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer'"
1⤵
PID:538

/bin/bash
sh -c "osascript -e 'display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer'"
1⤵
PID:538

/usr/bin/osascript
osascript -e "display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer"
1⤵
PID:538

/usr/bin/osascript
osascript -e "display dialog \"Required System Upgrade. Please enter passphrase for root.\" default answer \"\" with icon caution buttons {\"Continue\"} default button \"Continue\" giving up after 150 with title \"Application wants to install helper\" with hidden answer"
1⤵
PID:538