33b716ac2e11ed22eaae09e5fb1c352870c1390ef425da6f7c3ea04e6f1feb0f | Triage

Sharing

General

Target

OrionInstaller.dmg
Size

4.4MB
Sample

231104-kqdmraeb8y
MD5

ddc029e33e6155b95c40f7d95abc72c4
SHA1

be4fc6eb33b876df7d6c4e03e6b19555f35d4fb6
SHA256

33b716ac2e11ed22eaae09e5fb1c352870c1390ef425da6f7c3ea04e6f1feb0f
SHA512

8e52ad3388b6e881bd8cce1e77b395b2f7c50026d1d93e16e455d99f6fcbec5a6abea88d818d12d20400dcd352f951f5b0728e2c0a1336f5e0c547c7064b2b67
SSDEEP

98304:l49RzTVmBZgFlHCiSvSRIDfwkIAF1NwLYOEoxGhp5Qr4gXollHScYm:y9RHPFlRaSRIDf3F1Nw9zjX4HfY

Score

3^/10

Malware Config

Targets

- Target
  
  OrionInstaller.dmg
- Size
  
  4.4MB
- MD5
  
  ddc029e33e6155b95c40f7d95abc72c4
- SHA1
  
  be4fc6eb33b876df7d6c4e03e6b19555f35d4fb6
- SHA256
  
  33b716ac2e11ed22eaae09e5fb1c352870c1390ef425da6f7c3ea04e6f1feb0f
- SHA512
  
  8e52ad3388b6e881bd8cce1e77b395b2f7c50026d1d93e16e455d99f6fcbec5a6abea88d818d12d20400dcd352f951f5b0728e2c0a1336f5e0c547c7064b2b67
- SSDEEP
  
  98304:l49RzTVmBZgFlHCiSvSRIDfwkIAF1NwLYOEoxGhp5Qr4gXollHScYm:y9RHPFlRaSRIDf3F1Nw9zjX4HfY
Score

3^/10
behavioral1
- Target
  
  Orion/Orion.app/Contents/MacOS/Orion
- Size
  
  188KB
- MD5
  
  571226385bfc2ac1a4650db75c5ad845
- SHA1
  
  a284e69befb32b7f74bceaa0e8a9b3e1a2407e1a
- SHA256
  
  cecdaa228c6e7ac97874c95b998396a3c5b4ba9649324381cb1d8c52fff190d2
- SHA512
  
  bdb8a4aa78023e43c66c110566dc48a110df637980a9ffd7030feb1f9209e942ee8831b0235ed5d4069517d81a49a50030a94d4b0c7ef724bb3042bad28fab70
- SSDEEP
  
  1536:/cHIABo19Yo3c5v66xKgeEkzkD/wKttPAPoU6HyK:/cHC9Yo3w/Si1py
Score

1^/10
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2