Overview

overview

1

Static

static

1

iMazing2forMac.dmg

macos-10.15-amd64

1

iMazing 2....Server

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2....estore

macos-10.15-amd64

1

iMazing 2....Mazing

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2.....dylib

macos-10.15-amd64

1

iMazing 2....g Mini

macos-10.15-amd64

1

iMazing 2....uncher

macos-10.15-amd64

1

iMazing 2....ts.rtf

macos-10.15-amd64

1

iMazing 2....loader

macos-10.15-amd64

1

iMazing 2....ection

macos-10.15-amd64

1

iMazing 2....roject

macos-10.15-amd64

1

iMazing 2....roject

macos-10.15-amd64

1

iMazing 2....uncher

macos-10.15-amd64

1

iMazing 2....status

macos-10.15-amd64

1

iMazing 2....uncher

macos-10.15-amd64

1

Analysis

  • max time kernel
    141s
  • max time network
    170s
  • platform
    macos_amd64
  • resource
    macos-20220504-en
  • resource tags

    arch:amd64arch:i386image:macos-20220504-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    18-11-2023 15:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    iMazing 2.17.14/iMazing.app/Contents/MacOS/PurpleRestore.app/Contents/Frameworks/libswiftos.dylib

  • Size

    71KB

  • MD5

    d14346e6ffc0698b1864476af95dc72d

  • SHA1

    617b2404373f5ca9e0b0862ffdff51a2b6d00247

  • SHA256

    0d87e0a5e411b3af5139e59b27921ba49d18731f2ab78b2618db86ebf3df1b0c

  • SHA512

    fb2b4e0c373e46f718df00922c894b6b5d3a2265cf526722182f973d216441526272b78b3ec1a183d6f0e1c166b7ee65a54a0331d81ed30ee504bb98a6df1231

  • SSDEEP

    1536:dEvB/fyVElB9IbxKoy+b9i5H9dPc/cFUauVrVVwXG81oTcK:dEJHmctcc

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/iMazing 2.17.14/iMazing.app/Contents/MacOS/PurpleRestore.app/Contents/Frameworks/libswiftos.dylib\""
    1⤵
      PID:518
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/iMazing 2.17.14/iMazing.app/Contents/MacOS/PurpleRestore.app/Contents/Frameworks/libswiftos.dylib\""
      1⤵
        PID:518
      • /bin/bash
        sh -c "sudo /bin/zsh -c \"/Users/run/iMazing 2.17.14/iMazing.app/Contents/MacOS/PurpleRestore.app/Contents/Frameworks/libswiftos.dylib\""
        1⤵
          PID:518
        • /usr/bin/sudo
          sudo /bin/zsh -c "/Users/run/iMazing 2.17.14/iMazing.app/Contents/MacOS/PurpleRestore.app/Contents/Frameworks/libswiftos.dylib"
          1⤵
            PID:518
          • /usr/bin/sudo
            sudo /bin/zsh -c "/Users/run/iMazing 2.17.14/iMazing.app/Contents/MacOS/PurpleRestore.app/Contents/Frameworks/libswiftos.dylib"
            1⤵
              PID:518
              • /bin/zsh
                /bin/zsh -c "/Users/run/iMazing 2.17.14/iMazing.app/Contents/MacOS/PurpleRestore.app/Contents/Frameworks/libswiftos.dylib"
                2⤵
                  PID:519
                • /bin/zsh
                  /bin/zsh -c "/Users/run/iMazing 2.17.14/iMazing.app/Contents/MacOS/PurpleRestore.app/Contents/Frameworks/libswiftos.dylib"
                  2⤵
                    PID:519
                  • /Users/run/iMazing
                    /Users/run/iMazing 2.17.14/iMazing.app/Contents/MacOS/PurpleRestore.app/Contents/Frameworks/libswiftos.dylib
                    2⤵
                      PID:519
                    • /Users/run/iMazing
                      /Users/run/iMazing 2.17.14/iMazing.app/Contents/MacOS/PurpleRestore.app/Contents/Frameworks/libswiftos.dylib
                      2⤵
                        PID:519

                    Network

                    MITRE ATT&CK Matrix

                    Replay Monitor

                    Loading Replay Monitor...

                    Downloads