Overview

overview

10

Static

static

10

034c094d65...kes118

macos-10.15-amd64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    034c094d650aa051d62d1f5deb0c9c15_JaffaCakes118

  • Size

    168KB

  • Sample

    240427-p5a8dsah53

  • MD5

    034c094d650aa051d62d1f5deb0c9c15

  • SHA1

    7082d304a0d143d3a6e39a8699684a11c52169c9

  • SHA256

    0bcba0b94b8cfb286626b2778d12c6204f93cff8de1ccd5be313e45321b63db3

  • SHA512

    486cc4e9d8083421b02ec38735a306dfdaf0c321770b09583c2c4244e01b6917e3ef8367667c5ddbf2afc5fcd8b85acbe65203e123ee61ad97b5995dd88e1f44

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9D0:5SeOQdaZNxtk8cqhSxvHY9

Score
10/10
evilquestexecutionmacospersistence

Malware Config

Targets

    • Target

      034c094d650aa051d62d1f5deb0c9c15_JaffaCakes118

    • Size

      168KB

    • MD5

      034c094d650aa051d62d1f5deb0c9c15

    • SHA1

      7082d304a0d143d3a6e39a8699684a11c52169c9

    • SHA256

      0bcba0b94b8cfb286626b2778d12c6204f93cff8de1ccd5be313e45321b63db3

    • SHA512

      486cc4e9d8083421b02ec38735a306dfdaf0c321770b09583c2c4244e01b6917e3ef8367667c5ddbf2afc5fcd8b85acbe65203e123ee61ad97b5995dd88e1f44

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9D0:5SeOQdaZNxtk8cqhSxvHY9

    Score
    5/10
    executionpersistence

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence
    behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

1
T1059

AppleScript

1
T1059.002

System Services

1
T1569

Launchctl

1
T1569.001

Persistence

Create or Modify System Process

1
T1543

Launch Agent

1
T1543.001

Privilege Escalation

Create or Modify System Process

1
T1543

Launch Agent

1
T1543.001

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks