0d32bbf6dfbc48094b7c5a77a96752dcbb0eae35e9517524fe99283093d304e2 | Triage

Sharing

General

Target

sample
Size

17KB
Sample

240222-sggxtabh62
MD5

05aa01bd91f5154d511491d9bb343d3b
SHA1

48709c124ad16fb03b5230527fd94cb9ac4c91a9
SHA256

0d32bbf6dfbc48094b7c5a77a96752dcbb0eae35e9517524fe99283093d304e2
SHA512

2843610836da513d5ec21729e2c693b376e494bb20fc692b335d59f45e7bcfbb1e461a263e95da6ff0ea9bbe59b57c6bcee3663a5116ec4ac758fa758a231149
SSDEEP

384:rauMyGDpmReVoOs4FN9ylKeGMhU8Hhhb1Zc73N2weiPTVJCBXQL:riBVoOs4FryI1MFBhbzqsUJQQL

Score

8^/10

discovery evasion macos

Malware Config

Targets

- Target
  
  sample
- Size
  
  17KB
- MD5
  
  05aa01bd91f5154d511491d9bb343d3b
- SHA1
  
  48709c124ad16fb03b5230527fd94cb9ac4c91a9
- SHA256
  
  0d32bbf6dfbc48094b7c5a77a96752dcbb0eae35e9517524fe99283093d304e2
- SHA512
  
  2843610836da513d5ec21729e2c693b376e494bb20fc692b335d59f45e7bcfbb1e461a263e95da6ff0ea9bbe59b57c6bcee3663a5116ec4ac758fa758a231149
- SSDEEP
  
  384:rauMyGDpmReVoOs4FN9ylKeGMhU8Hhhb1Zc73N2weiPTVJCBXQL:riBVoOs4FryI1MFBhbzqsUJQQL
Score

8^/10

discovery evasion
- Path Permission
  evasion
- Gatekeeper Bypass
  evasion
- Legitimate hosting services abused for malware hosting/C2
- File Deletion
  evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Linux and Mac File and Directory Permissions Modification

Hide Artifacts

Resource Forking

Indicator Removal

File Deletion

Subvert Trust Controls

Gatekeeper Bypass

Credential Access

Discovery

File and Directory Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion