Overview

overview

10

Static

static

10

2024-06-21...ekoobe

macos-10.15-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-21_3a6a028b139e3900cf27bcf45536b0dd_adload_evilquest_rekoobe

  • Size

    168KB

  • Sample

    240621-ksd2astcmf

  • MD5

    3a6a028b139e3900cf27bcf45536b0dd

  • SHA1

    035929c23529e31ba75fce00388145a2e3480299

  • SHA256

    974629b698a8aafa3c9625a671dec194f7f1e4c0a2706ae82cd449ad408839d6

  • SHA512

    649619347f6f54807876433cb2ebb409e125de2644dfbcb6dc07ea213903c66b85fd373e6394c741add08888c3f03efbe21e9b0a94d4a1b088c479ce2b504f4b

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9N0:5SeOQdaZNxtk8cqhSxvHY9

Score
10/10
evilquestbackdoorevasionexecutionmacospersistence

Malware Config

Targets

    • Target

      2024-06-21_3a6a028b139e3900cf27bcf45536b0dd_adload_evilquest_rekoobe

    • Size

      168KB

    • MD5

      3a6a028b139e3900cf27bcf45536b0dd

    • SHA1

      035929c23529e31ba75fce00388145a2e3480299

    • SHA256

      974629b698a8aafa3c9625a671dec194f7f1e4c0a2706ae82cd449ad408839d6

    • SHA512

      649619347f6f54807876433cb2ebb409e125de2644dfbcb6dc07ea213903c66b85fd373e6394c741add08888c3f03efbe21e9b0a94d4a1b088c479ce2b504f4b

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9N0:5SeOQdaZNxtk8cqhSxvHY9

    Score
    10/10
    evilquestbackdoorevasionexecutionpersistence

    • EvilQuest

      EvilQuest family.

      backdoorevilquest

    • EvilQuest payload

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks