evilquest | 2fbbd1c2068d2a000640f57d684c1b3cf502b5775698927edcd130eaf5827a5e | Triage

Submit
Reports

Overview

overview

Static

static

0147ad309f...kes118

macos-10.15-amd64

Sharing

General

Target

0147ad309fdf40f2b378e6fc19c53bc0_JaffaCakes118
Size

168KB
Sample

240426-vzkgrsge35
MD5

0147ad309fdf40f2b378e6fc19c53bc0
SHA1

ce80d1807a19adcc2fa464ab2d8c50e3ab464f01
SHA256

2fbbd1c2068d2a000640f57d684c1b3cf502b5775698927edcd130eaf5827a5e
SHA512

64ee4de77e2edb97915b01b9d2f3d550dbcf2abc61d1e3d08df7693ba756b078b3879c503b5a76aef9b21dc42f724ffae6b3f1690eee59651b089a30766779fb
SSDEEP

3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9X0:5SeOQdaZNxtk8cqhSxvHY9

Score

10^/10

evilquest backdoor evasion macos

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

0147ad309fdf40f2b378e6fc19c53bc0_JaffaCakes118

Resource

macos-20240410-en

evilquest backdoor evasion

macos-10.15-amd64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  0147ad309fdf40f2b378e6fc19c53bc0_JaffaCakes118
- Size
  
  168KB
- MD5
  
  0147ad309fdf40f2b378e6fc19c53bc0
- SHA1
  
  ce80d1807a19adcc2fa464ab2d8c50e3ab464f01
- SHA256
  
  2fbbd1c2068d2a000640f57d684c1b3cf502b5775698927edcd130eaf5827a5e
- SHA512
  
  64ee4de77e2edb97915b01b9d2f3d550dbcf2abc61d1e3d08df7693ba756b078b3879c503b5a76aef9b21dc42f724ffae6b3f1690eee59651b089a30766779fb
- SSDEEP
  
  3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9X0:5SeOQdaZNxtk8cqhSxvHY9
Score

10^/10

evilquest backdoor evasion
- EvilQuest
  EvilQuest family.
  backdoor evilquest
- EvilQuest payload
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Resource Forking

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evilquestbackdoorevasion

© 2018-2024

Terms | Privacy