Overview
overview
7Static
static
1NetShred_X...NT.dmg
macos-10.15-amd64
1NetShred X...T].dmg
macos-10.15-amd64
7NetShred X.../rhash
macos-10.15-amd64
4NetShred X...perApp
macos-10.15-amd64
1NetShred X...ts.rtf
windows7-x64
4NetShred X...ts.rtf
windows10-2004-x64
1NetShred X...hred X
macos-10.15-amd64
4NetShred X...ts.rtf
windows7-x64
4NetShred X...ts.rtf
windows10-2004-x64
1NetShred X....dylib
macos-10.15-amd64
4NetShred X...qlite3
macos-10.15-amd64
4NetShred X...iendly
ubuntu-18.04-amd64
3NetShred X...iendly
debian-9-armhf
1NetShred X...iendly
debian-9-mips
NetShred X...iendly
debian-9-mipsel
Analysis
-
max time kernel
138s -
max time network
148s -
platform
macos-10.15_amd64 -
resource
macos-20240410-en -
resource tags
arch:amd64arch:i386image:macos-20240410-enkernel:19b77alocale:en-usos:macos-10.15-amd64system -
submitted
11-05-2024 04:19
Static task
static1
Behavioral task
behavioral1
Sample
NetShred_X_6_0_2_TNT.dmg
Resource
macos-20240410-en
Behavioral task
behavioral2
Sample
NetShred X 6.0.2/Manual install/NetShred X 6.0.2 [TNT].dmg
Resource
macos-20240410-en
Behavioral task
behavioral3
Sample
NetShred X 6.0.2/Extra/rhash
Resource
macos-20240410-en
Behavioral task
behavioral4
Sample
NetShred X 6.0.2/NetShred X.app/Contents/Library/LoginItems/LaunchAtLoginHelperApp.app/Contents/MacOS/LaunchAtLoginHelperApp
Resource
macos-20240410-en
Behavioral task
behavioral5
Sample
NetShred X 6.0.2/NetShred X.app/Contents/Library/LoginItems/LaunchAtLoginHelperApp.app/Contents/Resources/en.lproj/Credits.rtf
Resource
win7-20240221-en
Behavioral task
behavioral6
Sample
NetShred X 6.0.2/NetShred X.app/Contents/Library/LoginItems/LaunchAtLoginHelperApp.app/Contents/Resources/en.lproj/Credits.rtf
Resource
win10v2004-20240426-en
Behavioral task
behavioral7
Sample
NetShred X 6.0.2/NetShred X.app/Contents/MacOS/NetShred X
Resource
macos-20240410-en
Behavioral task
behavioral8
Sample
NetShred X 6.0.2/NetShred X.app/Contents/Resources/en.lproj/Credits.rtf
Resource
win7-20240508-en
Behavioral task
behavioral9
Sample
NetShred X 6.0.2/NetShred X.app/Contents/Resources/en.lproj/Credits.rtf
Resource
win10v2004-20240508-en
Behavioral task
behavioral10
Sample
NetShred X 6.0.2/NetShred X.app/Contents/Resources/libConfigurer64.dylib
Resource
macos-20240410-en
Behavioral task
behavioral11
Sample
NetShred X 6.0.2/NetShred X.app/Contents/Resources/sqlite3
Resource
macos-20240410-en
Behavioral task
behavioral12
Sample
NetShred X 6.0.2/Open Gatekeeper friendly
Resource
ubuntu1804-amd64-20240508-en
Behavioral task
behavioral13
Sample
NetShred X 6.0.2/Open Gatekeeper friendly
Resource
debian9-armhf-20240418-en
Behavioral task
behavioral14
Sample
NetShred X 6.0.2/Open Gatekeeper friendly
Resource
debian9-mipsbe-20240226-en
Behavioral task
behavioral15
Sample
NetShred X 6.0.2/Open Gatekeeper friendly
Resource
debian9-mipsel-20240226-en
General
-
Target
NetShred X 6.0.2/NetShred X.app/Contents/Library/LoginItems/LaunchAtLoginHelperApp.app/Contents/MacOS/LaunchAtLoginHelperApp
-
Size
132KB
-
MD5
83015e129c5d6135adcd8652185c10d4
-
SHA1
2c6924c88d547a68bede25b78e30d96c2aed6fd6
-
SHA256
fe05e8f5a73f38ca413042c0b9122ff71865820da1c9c7e25bce0a53b9875b7c
-
SHA512
b106071d925bc27a6af096a517d48134275f243e52cdf5da3b8c3df65a2404c1674612971c1a325b2e1513e05ea1ff32cbc1aad63d455c01bf258bbd43490b5e
-
SSDEEP
768:QGqv78n1Q8iab8u7bZLTtexjSmpT8T9Aab8:QGqz8n1QDKD7bZwxpTk9AK
Malware Config
Signatures
Processes
-
/bin/shsh -c "sudo /bin/zsh -c \"/Users/run/NetShred X 6.0.2/NetShred X.app/Contents/Library/LoginItems/LaunchAtLoginHelperApp.app/Contents/MacOS/LaunchAtLoginHelperApp\""1⤵
-
/bin/bashsh -c "sudo /bin/zsh -c \"/Users/run/NetShred X 6.0.2/NetShred X.app/Contents/Library/LoginItems/LaunchAtLoginHelperApp.app/Contents/MacOS/LaunchAtLoginHelperApp\""1⤵
-
/usr/bin/sudosudo /bin/zsh -c "/Users/run/NetShred X 6.0.2/NetShred X.app/Contents/Library/LoginItems/LaunchAtLoginHelperApp.app/Contents/MacOS/LaunchAtLoginHelperApp"1⤵
-
/bin/zsh/bin/zsh -c "/Users/run/NetShred X 6.0.2/NetShred X.app/Contents/Library/LoginItems/LaunchAtLoginHelperApp.app/Contents/MacOS/LaunchAtLoginHelperApp"2⤵
-
/Users/run/NetShred/Users/run/NetShred X 6.0.2/NetShred X.app/Contents/Library/LoginItems/LaunchAtLoginHelperApp.app/Contents/MacOS/LaunchAtLoginHelperApp2⤵
-
/usr/libexec/xpcproxyxpcproxy com.apple.corespotlightservice.725FD30A-6064-6C02-CC51-5DDB8891B57E1⤵
-
/System/Library/Frameworks/CoreSpotlight.framework/CoreSpotlightService/System/Library/Frameworks/CoreSpotlight.framework/CoreSpotlightService1⤵