Overview

overview

10

Static

static

10

2024-06-05...ekoobe

macos-10.15-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-05_f223ead54cb05662f6029c1acbbd5327_adload_evilquest_rekoobe

  • Size

    168KB

  • Sample

    240605-grrn8aga3y

  • MD5

    f223ead54cb05662f6029c1acbbd5327

  • SHA1

    335ce1d994fa525da177f8d4c1420b6263818ec0

  • SHA256

    29ee1a191d53b929b9d8493a9cf11f1c28f6a5fabf5c215b9740d15a36f5ac4d

  • SHA512

    47d32fe5ab27dcb38bd79478bfe5594c876cd2a0293ec21ff8766367af8ab6d2f83c437df3ac191d963def98df46c135734784389375a3312ae1c010355f3dbd

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9u0:5SeOQdaZNxtk8cqhSxvHY9

Score
10/10
evilquestbackdoorevasionexecutionmacospersistence

Malware Config

Targets

    • Target

      2024-06-05_f223ead54cb05662f6029c1acbbd5327_adload_evilquest_rekoobe

    • Size

      168KB

    • MD5

      f223ead54cb05662f6029c1acbbd5327

    • SHA1

      335ce1d994fa525da177f8d4c1420b6263818ec0

    • SHA256

      29ee1a191d53b929b9d8493a9cf11f1c28f6a5fabf5c215b9740d15a36f5ac4d

    • SHA512

      47d32fe5ab27dcb38bd79478bfe5594c876cd2a0293ec21ff8766367af8ab6d2f83c437df3ac191d963def98df46c135734784389375a3312ae1c010355f3dbd

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9u0:5SeOQdaZNxtk8cqhSxvHY9

    Score
    10/10
    evilquestbackdoorevasionexecutionpersistence

    • EvilQuest

      EvilQuest family.

      backdoorevilquest

    • EvilQuest payload

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks