General
-
Target
e4309d620dd2286d9d43031969b9b4a9.gif
-
Size
711KB
-
Sample
240615-vctrxsxfme
-
MD5
0b6854c901b326c0b95e757fab949fc4
-
SHA1
391a661ea5dcb72f9588c8d69fcab085394f7aba
-
SHA256
d21373f9a13f29a53fba37800a3806a6d5db4ad64682428f1f47e003232576f4
-
SHA512
5d18dd2c4d649b5c8cb7a1310d669522e3625ddab2c32565a48d35b17b60c83a62c4e18945a141e951e24757b74631afb1ec5cf3f155e7a6dd756289a9e7b7f7
-
SSDEEP
12288:BQdMQG0S712bs3v1UCYWBqSC/dcVhOo3v3N8dgKznrFaJosdjduzVV6tQmIOvzC+:V58+vuSC/dIMofN9+cJosdjk6tTbr8G9
Static task
static1
Malware Config
Targets
-
-
Target
e4309d620dd2286d9d43031969b9b4a9.gif
-
Size
711KB
-
MD5
0b6854c901b326c0b95e757fab949fc4
-
SHA1
391a661ea5dcb72f9588c8d69fcab085394f7aba
-
SHA256
d21373f9a13f29a53fba37800a3806a6d5db4ad64682428f1f47e003232576f4
-
SHA512
5d18dd2c4d649b5c8cb7a1310d669522e3625ddab2c32565a48d35b17b60c83a62c4e18945a141e951e24757b74631afb1ec5cf3f155e7a6dd756289a9e7b7f7
-
SSDEEP
12288:BQdMQG0S712bs3v1UCYWBqSC/dcVhOo3v3N8dgKznrFaJosdjduzVV6tQmIOvzC+:V58+vuSC/dIMofN9+cJosdjk6tTbr8G9
-
Path Permission
Adversaries may modify directory permissions/attributes to evade access control lists (ACLs) and access protected files.
-
Gatekeeper Bypass
Adversaries may modify file attributes and subvert Gatekeeper functionality to evade user prompts and execute untrusted programs. Gatekeeper is a set of technologies that act as layer of Apples security model to ensure only trusted applications are executed on a host.
-
File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity. Malware, tools, or other non-native files dropped or created on a system by an adversary (ex: Ingress Tool Transfer) may leave traces to indicate to what was done within a network and how. Removal of these files can occur.
-