Overview

overview

1

Static

static

1

CapCut.lnk

macos-10.15-amd64

1

Resubmissions

01-02-2024 02:22

240201-ctx7kabcap 1

01-02-2024 02:22

240201-ctq39abbhr 1

01-02-2024 02:21

240201-ctep8abbhp 1

01-02-2024 02:19

240201-crt25ahbh5 3

01-02-2024 02:18

240201-crktfshbg9 1

01-02-2024 02:18

240201-cra91shbg5 1

01-02-2024 02:14

240201-cn99yahbd4 4

01-02-2024 02:14

240201-cn2b2abahm 1

Analysis

  • max time kernel
    6s
  • max time network
    8s
  • platform
    macos-10.15_amd64
  • resource
    macos-20231201-en
  • resource tags

    arch:amd64arch:i386image:macos-20231201-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    01-02-2024 02:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CapCut.lnk

  • Size

    1KB

  • MD5

    11261cc623c0d248042709700b292022

  • SHA1

    708a0ad63da92b58aa32eebbbfcbe1be49592c57

  • SHA256

    37dbc82fbcf2b2c1e5e03ef902541608f0a84a737dea3ef9add161f1b197cb12

  • SHA512

    0c07692c31a9329a0b75b2073f20873829dd8c145f6edaac876d4c3aa88593bae271750b18ec98db8c5602bcfe27b22f6b8a4e67d6f0a869a2b45f386330e15b

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/CapCut.lnk\""
    1⤵
      PID:524
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/CapCut.lnk\""
      1⤵
        PID:524
      • /usr/bin/sudo
        sudo /bin/zsh -c /Users/run/CapCut.lnk
        1⤵
          PID:524
          • /bin/zsh
            /bin/zsh -c /Users/run/CapCut.lnk
            2⤵
              PID:525
            • /Users/run/CapCut.lnk
              /Users/run/CapCut.lnk
              2⤵
                PID:525
            • /usr/libexec/xpcproxy
              xpcproxy com.apple.audio.systemsoundserverd
              1⤵
                PID:528
              • /usr/sbin/systemsoundserverd
                /usr/sbin/systemsoundserverd
                1⤵
                  PID:528
                • /usr/libexec/xpcproxy
                  xpcproxy com.apple.sysmond
                  1⤵
                    PID:535
                  • /usr/libexec/sysmond
                    /usr/libexec/sysmond
                    1⤵
                      PID:535
                    • /usr/libexec/xpcproxy
                      xpcproxy com.apple.audio.AudioComponentRegistrar
                      1⤵
                        PID:556
                      • /System/Library/Frameworks/AudioToolbox.framework/AudioComponentRegistrar
                        /System/Library/Frameworks/AudioToolbox.framework/AudioComponentRegistrar -daemon
                        1⤵
                          PID:556
                        • /usr/libexec/xpcproxy
                          xpcproxy com.apple.pbs
                          1⤵
                            PID:557
                          • /System/Library/CoreServices/pbs
                            /System/Library/CoreServices/pbs
                            1⤵
                              PID:557

                            Network

                            MITRE ATT&CK Matrix

                            Replay Monitor

                            Loading Replay Monitor...

                            Downloads