Overview

overview

10

Static

static

10

05ea93247c...kes118

macos-10.15-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    05ea93247c310efd580eef8a05f4fbab_JaffaCakes118

  • Size

    168KB

  • Sample

    240428-x9xk7aff3t

  • MD5

    05ea93247c310efd580eef8a05f4fbab

  • SHA1

    b42b316a3c939fc24a1d273fea251511d683fdd8

  • SHA256

    58aa653db454059372683dfe9f3277cb9560f2dd2fa1d8875935ca05b827333e

  • SHA512

    9781ccb4563fa2ba5160afcf65206580475a46b6678b426dd14d7a01c08acb52120e511749d8c5c91569e9333c50038a57339dae353b0b6f61834b2d88a16e1d

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq92KI0:5SeOQdaZNxtk8cqhSxvHY92

Score
10/10
evilquestbackdoorexecutionmacospersistence

Malware Config

Targets

    • Target

      05ea93247c310efd580eef8a05f4fbab_JaffaCakes118

    • Size

      168KB

    • MD5

      05ea93247c310efd580eef8a05f4fbab

    • SHA1

      b42b316a3c939fc24a1d273fea251511d683fdd8

    • SHA256

      58aa653db454059372683dfe9f3277cb9560f2dd2fa1d8875935ca05b827333e

    • SHA512

      9781ccb4563fa2ba5160afcf65206580475a46b6678b426dd14d7a01c08acb52120e511749d8c5c91569e9333c50038a57339dae353b0b6f61834b2d88a16e1d

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq92KI0:5SeOQdaZNxtk8cqhSxvHY92

    Score
    10/10
    evilquestbackdoorexecutionpersistence

    • EvilQuest

      EvilQuest family.

      backdoorevilquest

    • EvilQuest payload

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks