2e1e3f75fdb08c26e41d7870db6ffea5b89b39100899fe609b3c1d0d018c87d3 | Triage

Submit
Reports

Overview

overview

4

Static

static

3

d(41).zip

windows7-x64

1

d(41).zip

windows10-2004-x64

1

d(41)/d_eu_(6).zip

windows7-x64

1

d(41)/d_eu_(6).zip

windows10-2004-x64

1

d_freebsd_arm

debian-12-armhf

1

d_freebsd_x32

ubuntu-18.04-amd64

1

d_freebsd_x64

ubuntu-18.04-amd64

1

d_lin_arm

debian-9-armhf

3

d_lin_x32

ubuntu-18.04-amd64

3

d_lin_x64

ubuntu-20.04-amd64

1

d_mac_arm64

macos-10.15-amd64

1

d_mac_x64

macos-10.15-amd64

1

d_win_arm64.exe

windows7-x64

d_win_arm64.exe

windows10-2004-x64

d_win_x32.exe

windows7-x64

1

d_win_x32.exe

windows10-2004-x64

1

d_win_x64.exe

windows7-x64

1

d_win_x64.exe

windows10-2004-x64

1

d(41)/d_ru_(6).zip

windows7-x64

1

d(41)/d_ru_(6).zip

windows10-2004-x64

1

d_freebsd_arm_ru

debian-12-armhf

1

d_freebsd_x32_ru

ubuntu-18.04-amd64

1

d_freebsd_x64_ru

ubuntu-18.04-amd64

1

d_lin_arm_ru

debian-9-armhf

3

d_lin_x32_ru

ubuntu-20.04-amd64

3

d_lin_x64_ru

ubuntu-20.04-amd64

1

d_mac_arm64_ru

macos-10.15-amd64

4

d_mac_x64_ru

macos-10.15-amd64

4

d_win_arm64_ru.exe

windows7-x64

d_win_arm64_ru.exe

windows10-2004-x64

d_win_x32_ru.exe

windows7-x64

1

d_win_x32_ru.exe

windows10-2004-x64

1

Resubmissions

14-06-2024 14:23

240614-rqapesxhrn 3

17-04-2024 09:42

240417-lpnl1abc26 4

Analysis

max time kernel
122s
max time network
141s
platform
macos-10.15_amd64
resource
macos-20240410-en
resource tags

arch:amd64arch:i386image:macos-20240410-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
17-04-2024 09:42

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d(41).zip

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

d(41).zip

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

d(41)/d_eu_(6).zip

Resource

win7-20240215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

d(41)/d_eu_(6).zip

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

d_freebsd_arm

Resource

debian12-armhf-20240221-en

debian-12-armhf

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

d_freebsd_x32

Resource

ubuntu1804-amd64-20240226-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

d_freebsd_x64

Resource

ubuntu1804-amd64-20240226-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

d_lin_arm

Resource

debian9-armhf-20240226-en

debian-9-armhf

2 signatures

150 seconds

Behavioral task

behavioral9

Sample

d_lin_x32

Resource

ubuntu1804-amd64-20240226-en

ubuntu-18.04-amd64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

d_lin_x64

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

d_mac_arm64

Resource

macos-20240410-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

d_mac_x64

Resource

macos-20240410-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

d_win_arm64.exe

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

d_win_arm64.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

d_win_x32.exe

Resource

win7-20240319-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

d_win_x32.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

d_win_x64.exe

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

d_win_x64.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

d(41)/d_ru_(6).zip

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

d(41)/d_ru_(6).zip

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

d_freebsd_arm_ru

Resource

debian12-armhf-20240221-en

debian-12-armhf

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

d_freebsd_x32_ru

Resource

ubuntu1804-amd64-20240226-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

d_freebsd_x64_ru

Resource

ubuntu1804-amd64-20240226-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

d_lin_arm_ru

Resource

debian9-armhf-20240226-en

debian-9-armhf

2 signatures

150 seconds

Behavioral task

behavioral25

Sample

d_lin_x32_ru

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

2 signatures

150 seconds

Behavioral task

behavioral26

Sample

d_lin_x64_ru

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

d_mac_arm64_ru

Resource

macos-20240410-en

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

d_mac_x64_ru

Resource

macos-20240410-en

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

d_win_arm64_ru.exe

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

d_win_arm64_ru.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

d_win_x32_ru.exe

Resource

win7-20231129-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral32

Sample

d_win_x32_ru.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

d_mac_arm64
Size

18.7MB
MD5

7e303ba87dc7d1bfe876b6db09a55a09
SHA1

f88b78b862768b4745bed470d2c47ad826ca2834
SHA256

7ee3574b0693e78060d863a5794437960aec0614af6c1909dd075daec0bcaf92
SHA512

5a1c94372cfb25b6a35c5e4ce398cf9983803ea7191bc554e0616833f6fc9f21533749a869b4fafd9ed9c20b02b93257401ab688d2b18c0a4eb45ffdf3e1d08b
SSDEEP

196608:h/7rbOG1k9zQjBGTdQbtwxztaw+mu7VAB604Ro34oDnS4G0hK:hTWUk9zQjBKfa7mp61otDS4G0Q

Score

1^/10

Malware Config

Signatures

Processes

/bin/sh
sh -c "sudo /bin/zsh -c \"/Users/run/d_mac_arm64\""
1⤵
PID:511

/bin/bash
sh -c "sudo /bin/zsh -c \"/Users/run/d_mac_arm64\""
1⤵
PID:511

/usr/bin/sudo
sudo /bin/zsh -c /Users/run/d_mac_arm64
1⤵
PID:511
- /bin/zsh
  /bin/zsh -c /Users/run/d_mac_arm64
  2⤵
  PID:512
- /Users/run/d_mac_arm64
  /Users/run/d_mac_arm64
  2⤵
  PID:512

/usr/sbin/spctl
/usr/sbin/spctl --assess --type execute /Applications/OneDrive.app
1⤵
PID:529

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy