General
-
Target
Setup.dmg
-
Size
457KB
-
Sample
240719-vbabwszhmm
-
MD5
7e8e3567e5766aea5991790554801c9b
-
SHA1
4c678b9a15383162cd047fbaf6968c4a2e2f0845
-
SHA256
9e5dc9028d4a404bf3d7aa412c58cfe8ece0da23c4f3f338e05b34198d9c1afe
-
SHA512
0abbfca024d39a812dd30050f0c79397c9af45c1ff1328b3bbd7557be791d31485f2ac8b5c2f6be89d51802da423517d78359d956d81cb87392895ea0f635839
-
SSDEEP
12288:2bKkDUe7zNTm6Sn7883Nf++PjiWdhqiAn2C5/z/:mKkZz8Pzh+mdhXK1z/
Malware Config
Targets
-
-
Target
Setup.dmg
-
Size
457KB
-
MD5
7e8e3567e5766aea5991790554801c9b
-
SHA1
4c678b9a15383162cd047fbaf6968c4a2e2f0845
-
SHA256
9e5dc9028d4a404bf3d7aa412c58cfe8ece0da23c4f3f338e05b34198d9c1afe
-
SHA512
0abbfca024d39a812dd30050f0c79397c9af45c1ff1328b3bbd7557be791d31485f2ac8b5c2f6be89d51802da423517d78359d956d81cb87392895ea0f635839
-
SSDEEP
12288:2bKkDUe7zNTm6Sn7883Nf++PjiWdhqiAn2C5/z/:mKkZz8Pzh+mdhXK1z/
Score7/10-
Queries the macOS version information.
An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture.
-
System Checks
Adversaries may employ various system checks to detect and avoid virtualization and analysis environments. This may include changing behaviors based on the results of checks for the presence of artifacts indicative of a virtual machine environment (VME) or sandbox.
-
File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity. Malware, tools, or other non-native files dropped or created on a system by an adversary (ex: Ingress Tool Transfer) may leave traces to indicate to what was done within a network and how. Removal of these files can occur.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Hide Artifacts
1Resource Forking
1Indicator Removal
1File Deletion
1Virtualization/Sandbox Evasion
1System Checks
1