evilquest | bef03faf06b74d094fdb30fcae133d94ff5159a9dcdf3ee44c90896b3ab37147 | Triage

Sharing

General

Target

2024-01-25_f4e514a1877c8d5465614fdb90e170a5_adload_evilquest
Size

168KB
Sample

240125-hhgnbsahfn
MD5

f4e514a1877c8d5465614fdb90e170a5
SHA1

5cebf34b8ff7b9f84e5d9dbb15171c605e686f39
SHA256

bef03faf06b74d094fdb30fcae133d94ff5159a9dcdf3ee44c90896b3ab37147
SHA512

f5368bddb43c2537f07e755ca8ff287d0e7b31996742fb37970b135fdad2173f6fc0c3a7a593bd78628418653f2b80601e6c7d6028f6428ea0fa0aaefcac92df
SSDEEP

3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9vD0:5SeOQdaZNxtk8cqhSxvHY9v

Score

10^/10

evilquest execution macos persistence

Malware Config

Targets

- Target
  
  2024-01-25_f4e514a1877c8d5465614fdb90e170a5_adload_evilquest
- Size
  
  168KB
- MD5
  
  f4e514a1877c8d5465614fdb90e170a5
- SHA1
  
  5cebf34b8ff7b9f84e5d9dbb15171c605e686f39
- SHA256
  
  bef03faf06b74d094fdb30fcae133d94ff5159a9dcdf3ee44c90896b3ab37147
- SHA512
  
  f5368bddb43c2537f07e755ca8ff287d0e7b31996742fb37970b135fdad2173f6fc0c3a7a593bd78628418653f2b80601e6c7d6028f6428ea0fa0aaefcac92df
- SSDEEP
  
  3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9vD0:5SeOQdaZNxtk8cqhSxvHY9v
Score

5^/10

execution persistence
- Launch Agent
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Launchctl

Persistence

Create or Modify System Process

Launch Agent

Privilege Escalation

Create or Modify System Process

Launch Agent

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

executionpersistence