Malware Analysis Report

2024-11-30 16:05

Sample ID 240205-p1v21aacdm
Target 2024-02-05_e5c094e74a6d1956b4b8e1dba0ba1de9_adload_evilquest
SHA256 a1577e3de5379edda79abf662fe9b472e525f1e67af9ef90d8d2602a4f77c1a3
Tags
evilquest
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

a1577e3de5379edda79abf662fe9b472e525f1e67af9ef90d8d2602a4f77c1a3

Threat Level: Known bad

The file 2024-02-05_e5c094e74a6d1956b4b8e1dba0ba1de9_adload_evilquest was found to be: Known bad.

Malicious Activity Summary

evilquest

Evilquest family

EvilQuest payload

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2024-02-05 12:48

Signatures

EvilQuest payload

Description Indicator Process Target
N/A N/A N/A N/A

Evilquest family

evilquest

Analysis: behavioral1

Detonation Overview

Submitted

2024-02-05 12:48

Reported

2024-02-05 12:48

Platform

macos-20231201-en

Max time network

2s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
US 20.42.73.28:443 tcp

Files

N/A