Overview

overview

3

Static

static

1

973816.webp

windows11-21h2-x64

3

973816.webp

android-10-x64

973816.webp

android-10-x64

973816.webp

macos-10.15-amd64

1

973816.webp

debian-9-mipsel

Analysis

  • max time kernel
    1139s
  • max time network
    982s
  • platform
    macos-10.15_amd64
  • resource
    macos-20240410-en
  • resource tags

    arch:amd64arch:i386image:macos-20240410-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    20-05-2024 20:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    973816.webp

  • Size

    63KB

  • MD5

    d3afdece336124c76401eef4f101c9cc

  • SHA1

    d301e492c2b7a58d864e4a414fc4e728eff21acd

  • SHA256

    a3b0b7e3d366d24fb885fbdd4cc261599d36d25e7aa75279eaf8b93b68843b46

  • SHA512

    115d4fb56cb1783bf0aa8bb906069b34a684d54ac86c9a16cf04ec946a1484b679cd00574b781c7d4ff4359092d1badc8feb697b9b4b3e2d09a967f23228b519

  • SSDEEP

    1536:i+ntlAfCfqn/kgaX4cDGMaQ/+iCZ60b8j47ARDu1NF+yf:ttlAfHnMgaX4cSMaQ+BzIMkRq39

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/973816.webp\""
    1⤵
      PID:485
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/973816.webp\""
      1⤵
        PID:485
      • /usr/bin/sudo
        sudo /bin/zsh -c /Users/run/973816.webp
        1⤵
          PID:485
          • /bin/zsh
            /bin/zsh -c /Users/run/973816.webp
            2⤵
              PID:486
            • /Users/run/973816.webp
              /Users/run/973816.webp
              2⤵
                PID:486
            • /usr/libexec/xpcproxy
              xpcproxy com.apple.spindump
              1⤵
                PID:537
              • /usr/sbin/spindump
                /usr/sbin/spindump
                1⤵
                  PID:537
                • /usr/libexec/xpcproxy
                  xpcproxy com.apple.diagnosticd
                  1⤵
                    PID:538
                  • /usr/libexec/diagnosticd
                    /usr/libexec/diagnosticd
                    1⤵
                      PID:538
                    • /usr/libexec/xpcproxy
                      xpcproxy com.apple.newsyslog
                      1⤵
                        PID:540
                      • /usr/sbin/newsyslog
                        /usr/sbin/newsyslog
                        1⤵
                          PID:540

                        Network

                        MITRE ATT&CK Matrix

                        Replay Monitor

                        Loading Replay Monitor...

                        Downloads