Overview

overview

4

Static

static

1

welcomeToThePark.zip

windows7-x64

1

welcomeToThePark.zip

windows10-2004-x64

1

__MACOSX/w..._store

windows7-x64

3

__MACOSX/w..._store

windows10-2004-x64

3

__MACOSX/w...me.app

macos-10.15-amd64

1

__MACOSX/w...er.ico

windows7-x64

3

__MACOSX/w...er.ico

windows10-2004-x64

3

__MACOSX/w...applet

windows7-x64

3

__MACOSX/w...applet

windows10-2004-x64

3

__MACOSX/w...ommand

windows7-x64

3

__MACOSX/w...ommand

windows10-2004-x64

3

__MACOSX/w...n.scpt

macos-10.15-amd64

1

welcome/.ds_store

windows7-x64

3

welcome/.ds_store

windows10-2004-x64

3

welcome/.h...hePark

macos-10.15-amd64

1

welcome/Ch...fo.xml

windows7-x64

1

welcome/Ch...fo.xml

windows10-2004-x64

1

welcome/Ch...applet

macos-10.15-amd64

1

welcome/Ch...kgInfo

windows7-x64

1

welcome/Ch...kgInfo

windows10-2004-x64

1

welcome/Ch...n.scpt

macos-10.15-amd64

1

welcome/Ch...t.icns

windows7-x64

3

welcome/Ch...t.icns

windows10-2004-x64

3

welcome/Ch...t.rsrc

windows7-x64

3

welcome/Ch...t.rsrc

windows10-2004-x64

3

welcome/Ch...XT.rtf

windows7-x64

4

welcome/Ch...XT.rtf

windows10-2004-x64

1

welcome/Ch...ommand

ubuntu-18.04-amd64

1

welcome/Ch...ommand

debian-9-armhf

1

welcome/Ch...ommand

debian-9-mips

1

welcome/Ch...ommand

debian-9-mipsel

1

welcome/Ch...er.png

windows7-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    welcomeToThePark.zip

  • Size

    1.2MB

  • MD5

    9a9ffa7418b010e45d8c6049217425a7

  • SHA1

    75b23349af3ce19bbe19a8aba3095b83344a181e

  • SHA256

    a03b73ee6f70bdb083ca96f06a6a601494d9f67772e10b75e90362731e959c67

  • SHA512

    90ca2cc6ae5e3c9b4b336a727046de0809e5e1c82b01ce0e73b1692b22bd9a6cb059af7ad8b91409c9b65b6fd1b99cc217f4ec71f3696efaef06ebec3a455960

  • SSDEEP

    24576:7EDQIaCA7ey1C7ltYxPgUyd8RDtgxPeld0n9BZWAGxgK/xhPmwrUc8FoG8:7aQJXvC5tCgN8Ft6enkPzc/mwSC

Score
1/10

Malware Config

Signatures

Files

  • welcomeToThePark.zip
    .zip

    Password: infected

  • __MACOSX/welcome/._.DS_Store
  • __MACOSX/welcome/._Chrome.app
  • __MACOSX/welcome/Chrome.app/._FlashPlayer.ico
  • __MACOSX/welcome/Chrome.app/._Icon
  • __MACOSX/welcome/Chrome.app/Contents/MacOS/._applet
  • __MACOSX/welcome/Chrome.app/Contents/Resources/._interesting_thing.command
  • __MACOSX/welcome/Chrome.app/Contents/Resources/Scripts/._main.scpt
  • welcome/.DS_Store
  • welcome/.hidden/welcomeToThePark
    .macho macos
  • welcome/Chrome.app/Contents/Info.plist
    .xml
  • welcome/Chrome.app/Contents/MacOS/applet
    .macho macos
  • welcome/Chrome.app/Contents/PkgInfo
  • welcome/Chrome.app/Contents/Resources/Scripts/main.scpt
    .scpt macos
  • welcome/Chrome.app/Contents/Resources/applet.icns
  • welcome/Chrome.app/Contents/Resources/applet.rsrc
  • welcome/Chrome.app/Contents/Resources/description.rtfd/TXT.rtf
    .rtf
  • welcome/Chrome.app/Contents/Resources/interesting_thing.command
    .sh linux
  • welcome/Chrome.app/FlashPlayer.ico
    .png