4c2f1de25105ef14b8dd3624ffdd0abdec9b56e34fc441ca06d8c55108bf160d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2B872578-F9AF-4C63-9020-F0CB56F52502.jpeg
Size

111KB
Sample

240221-q7hwpaha26
MD5

0ef93f7d8e4570378a8b27564c8b6a78
SHA1

08913415054cc00bf0943aac2db80c702fab15d3
SHA256

4c2f1de25105ef14b8dd3624ffdd0abdec9b56e34fc441ca06d8c55108bf160d
SHA512

612a0524c9925c2763fe159d72c7ae5e40c31919002ae53a6ce666e0c044e90ec10331a261d9340cc84e211f3ef4b92e2546d7eab086ee2f5e7202e8d7f08ff0
SSDEEP

1536:X3XT18vlWdGPvizfFEzcizIz80O4WNDKs+bkmgq1tv/DpBamBrc5I:3T1aWdGz3zzFWzQmgep/c5I

Score

6^/10

evasion execution macos persistence

Malware Config

Targets

- Target
  
  2B872578-F9AF-4C63-9020-F0CB56F52502.jpeg
- Size
  
  111KB
- MD5
  
  0ef93f7d8e4570378a8b27564c8b6a78
- SHA1
  
  08913415054cc00bf0943aac2db80c702fab15d3
- SHA256
  
  4c2f1de25105ef14b8dd3624ffdd0abdec9b56e34fc441ca06d8c55108bf160d
- SHA512
  
  612a0524c9925c2763fe159d72c7ae5e40c31919002ae53a6ce666e0c044e90ec10331a261d9340cc84e211f3ef4b92e2546d7eab086ee2f5e7202e8d7f08ff0
- SSDEEP
  
  1536:X3XT18vlWdGPvizfFEzcizIz80O4WNDKs+bkmgq1tv/DpBamBrc5I:3T1aWdGz3zzFWzQmgep/c5I
Score

6^/10

evasion execution persistence
- Legitimate hosting services abused for malware hosting/C2
- Launch Agent
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Launchctl

Persistence

Create or Modify System Process

Launch Agent

Privilege Escalation

Create or Modify System Process

Launch Agent

Defense Evasion

Hide Artifacts

Resource Forking

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

evasionexecutionpersistence