bfc092b384976e97153bae0e29359461bfd65fce5ad8188d6460de57bc680eaf | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1/0178b79b...bd.exe

macos-10.15-amd64

1

1/0280cde4...60.exe

macos-10.15-amd64

1

1/08b76206...65.exe

macos-10.15-amd64

1

1/0e4fc438...91.exe

macos-10.15-amd64

1

1/0fb86a8b...05.exe

macos-10.15-amd64

1

1/25898c73...8f.exe

macos-10.15-amd64

1

1/2c2e9491...3c.exe

macos-10.15-amd64

1

1/2ef0f582...2e.exe

macos-10.15-amd64

1

1/39884fc0...82.exe

macos-10.15-amd64

1

1/3a72ecec...8a.exe

macos-10.15-amd64

1

1/3bfcb4f7...71.exe

macos-10.15-amd64

1

1/4103411f...f5.exe

macos-10.15-amd64

1

1/4e0fdb84...95.exe

macos-10.15-amd64

1

1/5297372f...33.exe

macos-10.15-amd64

1

1/68292f38...e4.exe

macos-10.15-amd64

1

1/6da4696b...e5.exe

macos-10.15-amd64

1

1/7021c9cb...78.exe

macos-10.15-amd64

1

1/752f5cc5...60.exe

macos-10.15-amd64

1

1/7c7cded8...0c.exe

macos-10.15-amd64

1

1/97d29ffc...84.exe

macos-10.15-amd64

1

1/a306cc84...03.exe

macos-10.15-amd64

1/ae1a168f...74.exe

macos-10.15-amd64

1

1/b13f2364...d6.exe

macos-10.15-amd64

1

1/b2a1d168...9d.bat

macos-10.15-amd64

1

1/bb29aeb6...bd.exe

macos-10.15-amd64

1

1/c8e5a24a...f5.bat

macos-10.15-amd64

1

1/c9736cdc...97.exe

macos-10.15-amd64

1

1/d58780d1...a0.exe

macos-10.15-amd64

1

1/de19e016...d0.exe

macos-10.15-amd64

1

1/e886016e...51.exe

macos-10.15-amd64

1

1/f0f496ec...f4.bat

macos-10.15-amd64

1

1/f28599b0...23.exe

macos-10.15-amd64

1

Resubmissions

02/08/2024, 12:16

240802-pfv69s1drg 10

02/08/2024, 12:15

240802-pe6ava1dra 10

02/08/2024, 12:14

240802-pefp7a1dqh 10

02/08/2024, 12:06

240802-n97ays1dpa 10

01/08/2024, 01:57

240801-cdsl5szgma 10

Analysis

max time kernel
89s
max time network
158s
platform
macos-10.15_amd64
resource
macos-20240711.1-en
resource tags

arch:amd64arch:i386image:macos-20240711.1-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
02/08/2024, 12:14

Sharing

Static task

static1

hello 6951125327 rat default stealc lockbit xworm redline asyncrat

12 signatures

Behavioral task

behavioral1

Sample

1/0178b79bd084c2597b2de4e62e61a88bb8359e4fcac2fe672bb887e0e52e5dbd.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

1/0280cde4a65664a05361129dc1cfa10bc17b3fa9567103ce6eb9d07b06f8f160.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

1/08b7620610fc30c54e5cc095a54ae6d2949f68b0f224c285283e1612c254ef65.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

1/0e4fc438decc9723b89bd0e71b9ee30c1a8390e697d790b2d5ce96e94accd791.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

1/0fb86a8ba8fdf57990c283080a671c1320cbcdfd0e8b5f5a250d9c38a6fce305.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

1/25898c73a877d87ba289bb4ab9585eb36eba9d27d47af678a86befdbf9aa938f.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

1/2c2e949171d86da9b5c58901de2e4a99c4fe86fe92c47556f53b833ce77c503c.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

1/2ef0f582367a7674aef245acb06977bf646419f1f8d05c7fb07881a6102f982e.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

1/39884fc02ed9a51ffcc9b298916be79307f15f1518b6ae2021dd07af0aeecb82.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

1/3a72ecec34a29f53a1d73677a0e6f4c2e19087a32f1808f8f4ff643f62128d8a.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

1/3bfcb4f798ba63a1d18887cb67c90e083d5561a58136a892bd9944528c707671.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

1/4103411f7bb66a033f9f5ce35839ba08b2a27d169e188a911185790f3b78bbf5.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

1/4e0fdb84649ad15a0722789512aaef15c7bfbc4cab82b2a7b0ea52ac9594bb95.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

1/5297372fe85eea3ecc0d271b5567f2c7ee75bd3a04e745debddb04c9b05dae33.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

1/68292f388207f8ec69774dbad429e67420881ce46ecfad55f23182ec3a8893e4.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

1/6da4696b804777582ae586a4e9f42f6c18ccf540222d70dcf3374ee291e674e5.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

1/7021c9cba6c224272f01d04450c6c31c93857a21feacfa4295a878a4d7b04378.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

1/752f5cc5a7b0f986286d09e8288c0958bc1b798477ca0d09dc2658c7ab109060.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

1/7c7cded8d1c0784881859ed03340d81c24ea9bf5d9972963cedf0e40b9856a0c.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

1/97d29ffc3556069c807b5c0ae2e2b109ae329feafc912d64f8b7f437bea47d84.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

1/a306cc84c907d6d57af300d1181128b24ca03e90c38ca7df7e84d35e80a63e03.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

1/ae1a168ff481173d18034d14a767c0801458e95cc3016dc8d82212d0c083a474.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

1/b13f23643fddce3f41b6908a00051b6688788668c81d698994c140bf6290c2d6.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

1/b2a1d168dc4234e687d0969b6a1901ac7e69c0d4bb72a1a4c76ba67fa6a14f9d.bat

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

1/bb29aeb6ceecc37829b40e36f91a4620d7e0aae16b1ceea70bb70135e11172bd.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

1/c8e5a24a6d2fa68d7976457a19576b381e6211202500af5280b0f3b256446bf5.bat

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

1/c9736cdc4ade9fddb9b293e0366f182f972154d98169b58e532b7905c310bf97.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

1/d58780d1d574bfe77c6f9cfad1cf4b51522231b2699081befd5bbd15f7309aa0.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

1/de19e0163af15585c305f845b90262aee3c2bdf037f9fc733d3f1b379d00edd0.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

1/e886016e48bf0e3cd100d627678f345743509fd5f57f3c9b182f2833352bd451.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

1/f0f496eccc61594c53ded581b6683a77072f607ab018ec0a770a0aa7c7f45ff4.bat

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

1/f28599b06560617bccdfb56acc841f3e642ff51b9956632fcc4204f026711e23.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Report Analysis Logs

General

Target

1/0280cde4a65664a05361129dc1cfa10bc17b3fa9567103ce6eb9d07b06f8f160.exe
Size

1.3MB
MD5

73d006e33d8eda033e684c07b15c53ad
SHA1

e3e0a09b37beee1e19d5a6b9fd5322f906f4493d
SHA256

0280cde4a65664a05361129dc1cfa10bc17b3fa9567103ce6eb9d07b06f8f160
SHA512

1b2822a9f568783a6064194c21e4147ffb10c1a0c3ca00f586f3306cf7b5d0bee39af5dad5a78f720d75c09b0b71d44c75d05d9b432b1159915977006e9252db
SSDEEP

24576:KAHnh+eWsN3skA4RV1Hom2KXMmHaKi4Tivd32MUMh9ZzU2Fk1gn5:dh+ZkldoPK8YaKi4mrUUZbk1I

Score

1^/10

Malware Config

Signatures

Processes

/bin/sh
sh -c "sudo /bin/zsh -c \"/Users/run/1/0280cde4a65664a05361129dc1cfa10bc17b3fa9567103ce6eb9d07b06f8f160.exe\""
1⤵
PID:509

/bin/bash
sh -c "sudo /bin/zsh -c \"/Users/run/1/0280cde4a65664a05361129dc1cfa10bc17b3fa9567103ce6eb9d07b06f8f160.exe\""
1⤵
PID:509

/usr/bin/sudo
sudo /bin/zsh -c /Users/run/1/0280cde4a65664a05361129dc1cfa10bc17b3fa9567103ce6eb9d07b06f8f160.exe
1⤵
PID:509
- /bin/zsh
  /bin/zsh -c /Users/run/1/0280cde4a65664a05361129dc1cfa10bc17b3fa9567103ce6eb9d07b06f8f160.exe
  2⤵
  PID:510
- /Users/run/1/0280cde4a65664a05361129dc1cfa10bc17b3fa9567103ce6eb9d07b06f8f160.exe
  /Users/run/1/0280cde4a65664a05361129dc1cfa10bc17b3fa9567103ce6eb9d07b06f8f160.exe
  2⤵
  PID:510

/usr/libexec/xpcproxy
xpcproxy com.apple.audio.AudioComponentRegistrar
1⤵
PID:511

/System/Library/Frameworks/AudioToolbox.framework/AudioComponentRegistrar
/System/Library/Frameworks/AudioToolbox.framework/AudioComponentRegistrar -daemon
1⤵
PID:511

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy