Overview

overview

10

Static

static

10

2024-04-12...lquest

macos-10.15-amd64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-12_b37fb02e9801022dba49363567fcf5a5_adload_evilquest

  • Size

    182KB

  • Sample

    240412-3lencsgd29

  • MD5

    b37fb02e9801022dba49363567fcf5a5

  • SHA1

    e84da21e99743d0a9621b8d4580a5f442828cb03

  • SHA256

    4289a41a720593c337052266a42d5249600cc0687fde446b45c184663a091852

  • SHA512

    5ec55bf4ad87e3f4526527f0c055aeca60c04e7298a6620ebd0c8c85576bb480404dee021f1f5859b0923a37c11f3b733783c642c049c24b398f1daeb779255d

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9WX04Gd:5SeOQdaZNxtk8cqhSxvHY9KGd

Score
10/10
evilquestexecutionmacospersistence

Malware Config

Targets

    • Target

      2024-04-12_b37fb02e9801022dba49363567fcf5a5_adload_evilquest

    • Size

      182KB

    • MD5

      b37fb02e9801022dba49363567fcf5a5

    • SHA1

      e84da21e99743d0a9621b8d4580a5f442828cb03

    • SHA256

      4289a41a720593c337052266a42d5249600cc0687fde446b45c184663a091852

    • SHA512

      5ec55bf4ad87e3f4526527f0c055aeca60c04e7298a6620ebd0c8c85576bb480404dee021f1f5859b0923a37c11f3b733783c642c049c24b398f1daeb779255d

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9WX04Gd:5SeOQdaZNxtk8cqhSxvHY9KGd

    Score
    5/10
    executionpersistence

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence

    • Launch Daemon

      Adversaries may create or modify Launch Daemons to execute malicious payloads as part of persistence. Launch Daemons are plist files used to interact with Launchd, the service management framework used by macOS.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks