Overview

overview

10

Static

static

10

0449c9c54a...kes118

macos-10.15-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0449c9c54a0bb3608321b2d8275023a1_JaffaCakes118

  • Size

    168KB

  • Sample

    240428-d6g7jsfe9y

  • MD5

    0449c9c54a0bb3608321b2d8275023a1

  • SHA1

    c42b3bda22e7b7877e383596bf2173d380023c08

  • SHA256

    54e2ecad2930f63e5d64a5f8f406ecd856eec7019f6a95e8d958f216196b446e

  • SHA512

    61560532a7ecd7559118c4b10bcdb3361e8ce2f1926714ea30c3dcd45669ddf783b3d2d18533c334291aaef04ed4dc8b94dd5c4668b33c46129d1ed80d52180a

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9CqJ0:5SeOQdaZNxtk8cqhSxvHY9Cq

Score
10/10
evilquestbackdoorevasionexecutionmacospersistence

Malware Config

Targets

    • Target

      0449c9c54a0bb3608321b2d8275023a1_JaffaCakes118

    • Size

      168KB

    • MD5

      0449c9c54a0bb3608321b2d8275023a1

    • SHA1

      c42b3bda22e7b7877e383596bf2173d380023c08

    • SHA256

      54e2ecad2930f63e5d64a5f8f406ecd856eec7019f6a95e8d958f216196b446e

    • SHA512

      61560532a7ecd7559118c4b10bcdb3361e8ce2f1926714ea30c3dcd45669ddf783b3d2d18533c334291aaef04ed4dc8b94dd5c4668b33c46129d1ed80d52180a

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9CqJ0:5SeOQdaZNxtk8cqhSxvHY9Cq

    Score
    10/10
    evilquestbackdoorevasionexecutionpersistence

    • EvilQuest

      EvilQuest family.

      backdoorevilquest

    • EvilQuest payload

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks