Overview

overview

10

Static

static

10

05119a7067...kes118

macos-10.15-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    05119a7067bd4e87e5d83e660cedbd5a_JaffaCakes118

  • Size

    337KB

  • Sample

    240428-ndgqesef4s

  • MD5

    05119a7067bd4e87e5d83e660cedbd5a

  • SHA1

    2b605260e86b78b7862776b64749ebf7b9cd5238

  • SHA256

    04d382b06c47787397c066af8a3ab884e2095b4c26df8c76eab8866a30d4830b

  • SHA512

    43d957aed35669a6926a677be9845e5b087a5e3b2142c63482955438e4ffd6cb32ba141e808528a97837ee6024372129c628938c80e5ba469d1f3a6c60027d0b

  • SSDEEP

    6144:5SeOQdaZNxtk8cqhSxvHY9hSeOQdaZNxtk8cqhSxvHY9:5LOQdaDxq8cqavHY3LOQdaDxq8cqavHY

Score
10/10
evilquestbackdoorevasionexecutionmacospersistence

Malware Config

Targets

    • Target

      05119a7067bd4e87e5d83e660cedbd5a_JaffaCakes118

    • Size

      337KB

    • MD5

      05119a7067bd4e87e5d83e660cedbd5a

    • SHA1

      2b605260e86b78b7862776b64749ebf7b9cd5238

    • SHA256

      04d382b06c47787397c066af8a3ab884e2095b4c26df8c76eab8866a30d4830b

    • SHA512

      43d957aed35669a6926a677be9845e5b087a5e3b2142c63482955438e4ffd6cb32ba141e808528a97837ee6024372129c628938c80e5ba469d1f3a6c60027d0b

    • SSDEEP

      6144:5SeOQdaZNxtk8cqhSxvHY9hSeOQdaZNxtk8cqhSxvHY9:5LOQdaDxq8cqavHY3LOQdaDxq8cqavHY

    Score
    10/10
    evilquestbackdoorevasionexecutionpersistence

    • EvilQuest

      EvilQuest family.

      backdoorevilquest

    • EvilQuest payload

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks