Overview

overview

10

Static

static

10

0b480f31e1...kes118

macos-10.15-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0b480f31e11704afab95907864f6aa8f_JaffaCakes118

  • Size

    168KB

  • Sample

    240501-hctqpscc82

  • MD5

    0b480f31e11704afab95907864f6aa8f

  • SHA1

    74ebabdc81b617a995b8801828146a085ffe4652

  • SHA256

    9f1a89e60e3313c38dd2363b529984f61387e694cd8922dbcdf33441a218beab

  • SHA512

    d4059ca2a1b6413a0e36e043970bc4fc7349cb805c1836b8b67bede84b79aa3d9bb1f96dbebfe7a7ddd6bf63e4b8c9e13cd0a85d535921b224c40944f488587c

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9p0:5SeOQdaZNxtk8cqhSxvHY9

Score
10/10
evilquestbackdoorexecutionmacospersistence

Malware Config

Targets

    • Target

      0b480f31e11704afab95907864f6aa8f_JaffaCakes118

    • Size

      168KB

    • MD5

      0b480f31e11704afab95907864f6aa8f

    • SHA1

      74ebabdc81b617a995b8801828146a085ffe4652

    • SHA256

      9f1a89e60e3313c38dd2363b529984f61387e694cd8922dbcdf33441a218beab

    • SHA512

      d4059ca2a1b6413a0e36e043970bc4fc7349cb805c1836b8b67bede84b79aa3d9bb1f96dbebfe7a7ddd6bf63e4b8c9e13cd0a85d535921b224c40944f488587c

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9p0:5SeOQdaZNxtk8cqhSxvHY9

    Score
    10/10
    evilquestbackdoorexecutionpersistence

    • EvilQuest

      EvilQuest family.

      backdoorevilquest

    • EvilQuest payload

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks