Overview

overview

1

Static

static

1

_805d2a74-...78.jpg

macos-10.15-amd64

1

Resubmissions

20/05/2024, 16:44

240520-t8984sab7t 3

20/05/2024, 16:44

240520-t81dxaab6s 1

Analysis

  • max time kernel
    377s
  • max time network
    1582s
  • platform
    macos-10.15_amd64
  • resource
    macos-20240410-en
  • resource tags

    arch:amd64arch:i386image:macos-20240410-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    20/05/2024, 16:44

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    _805d2a74-e62c-475c-ad85-d58f84e13f78.jpg

  • Size

    177KB

  • MD5

    7fac20a1d8d0b90e70ac476d473da631

  • SHA1

    cf2bef992baa290e642ece9d9abb78c51137a72c

  • SHA256

    99cc342db4753a09ad51f134ce410c173902b75ba0b43cea4b3137c5d1eb1f25

  • SHA512

    fe5f40684053c31f9f3bbb43a6ad4c453c7a42cc43b4c4816bddb519405e2335af4c4e734fce0f3d5fbe7a2630924a1785ab8d40081704f9ba9fcbce31a4c1a1

  • SSDEEP

    3072:FXIfbrx8PcyO0sdV1YNoc4oDZoqYHXpZjo57/9/WF8zOB58t6ABFrmxd:F4HCNO0sdr4mtZZCtmIbi

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/_805d2a74-e62c-475c-ad85-d58f84e13f78.jpg\""
    1⤵
      PID:485
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/_805d2a74-e62c-475c-ad85-d58f84e13f78.jpg\""
      1⤵
        PID:485
      • /usr/bin/sudo
        sudo /bin/zsh -c /Users/run/_805d2a74-e62c-475c-ad85-d58f84e13f78.jpg
        1⤵
          PID:485
          • /bin/zsh
            /bin/zsh -c /Users/run/_805d2a74-e62c-475c-ad85-d58f84e13f78.jpg
            2⤵
              PID:488
            • /Users/run/_805d2a74-e62c-475c-ad85-d58f84e13f78.jpg
              /Users/run/_805d2a74-e62c-475c-ad85-d58f84e13f78.jpg
              2⤵
                PID:488
            • /usr/libexec/xpcproxy
              xpcproxy com.apple.spindump
              1⤵
                PID:533
              • /usr/sbin/spindump
                /usr/sbin/spindump
                1⤵
                  PID:533
                • /usr/libexec/xpcproxy
                  xpcproxy com.apple.diagnosticd
                  1⤵
                    PID:534
                  • /usr/libexec/diagnosticd
                    /usr/libexec/diagnosticd
                    1⤵
                      PID:534

                    Network

                          MITRE ATT&CK Matrix

                          Replay Monitor

                          Loading Replay Monitor...

                          Downloads