evilquest | 56407822e12c1ec650a5f47db013aacb5ba72c09fbc9aca50501cdc87bd1891e | Triage

Submit
Reports

Overview

overview

Static

static

04897eb182...kes118

macos-10.15-amd64

Sharing

General

Target

04897eb182394f6168eb9e1d86913d71_JaffaCakes118
Size

168KB
Sample

240428-gvvv2shf79
MD5

04897eb182394f6168eb9e1d86913d71
SHA1

093a40d67eff3680eb5fa7c330c0710841892210
SHA256

56407822e12c1ec650a5f47db013aacb5ba72c09fbc9aca50501cdc87bd1891e
SHA512

ca2df15ca119c1f6df24fcc36f12eab1deae323bf017b6f264e23d4b7255f7d1fe237bbdcb6eff434c119eef02393227955b6501a1866f6abb9cf43153bdf3dc
SSDEEP

3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9Yf0:5SeOQdaZNxtk8cqhSxvHY9Y

Score

10^/10

evilquest backdoor evasion macos

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

04897eb182394f6168eb9e1d86913d71_JaffaCakes118

Resource

macos-20240410-en

evilquest backdoor evasion

macos-10.15-amd64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  04897eb182394f6168eb9e1d86913d71_JaffaCakes118
- Size
  
  168KB
- MD5
  
  04897eb182394f6168eb9e1d86913d71
- SHA1
  
  093a40d67eff3680eb5fa7c330c0710841892210
- SHA256
  
  56407822e12c1ec650a5f47db013aacb5ba72c09fbc9aca50501cdc87bd1891e
- SHA512
  
  ca2df15ca119c1f6df24fcc36f12eab1deae323bf017b6f264e23d4b7255f7d1fe237bbdcb6eff434c119eef02393227955b6501a1866f6abb9cf43153bdf3dc
- SSDEEP
  
  3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9Yf0:5SeOQdaZNxtk8cqhSxvHY9Y
Score

10^/10

evilquest backdoor evasion
- EvilQuest
  EvilQuest family.
  backdoor evilquest
- EvilQuest payload
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Resource Forking

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evilquestbackdoorevasion

© 2018-2024

Terms | Privacy