Overview

overview

10

Static

static

10

08cf3068ee...kes118

macos-10.15-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    08cf3068eee2e82a27098e78aa132585_JaffaCakes118

  • Size

    168KB

  • Sample

    240430-cvmr8aac4t

  • MD5

    08cf3068eee2e82a27098e78aa132585

  • SHA1

    e18745536358b1a0263c78ed6da60cd4d5791fd1

  • SHA256

    474db68aa4913f150a4ca3ba6ecbf1941978e1f515df7bf4c86309ec54c10bc8

  • SHA512

    1acc41efab314768287987170a28b3ebb76bae466307b7521c38f2f3518e75ef7147db76058c33761fa3fb84141c8b1a52b7cd67c4931e835861381fa7722046

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9OUX0:5SeOQdaZNxtk8cqhSxvHY97

Score
10/10
evilquestbackdoorexecutionmacospersistence

Malware Config

Targets

    • Target

      08cf3068eee2e82a27098e78aa132585_JaffaCakes118

    • Size

      168KB

    • MD5

      08cf3068eee2e82a27098e78aa132585

    • SHA1

      e18745536358b1a0263c78ed6da60cd4d5791fd1

    • SHA256

      474db68aa4913f150a4ca3ba6ecbf1941978e1f515df7bf4c86309ec54c10bc8

    • SHA512

      1acc41efab314768287987170a28b3ebb76bae466307b7521c38f2f3518e75ef7147db76058c33761fa3fb84141c8b1a52b7cd67c4931e835861381fa7722046

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9OUX0:5SeOQdaZNxtk8cqhSxvHY97

    Score
    10/10
    evilquestbackdoorexecutionpersistence

    • EvilQuest

      EvilQuest family.

      backdoorevilquest

    • EvilQuest payload

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks