Overview

overview

10

Static

static

10

2aef1134cb...8e.exe

windows11-21h2-x64

10

2aef1134cb...8e.exe

macos-10.15-amd64

1

Resubmissions

11-08-2024 04:29

240811-e4cpqavfmp 10

11-08-2024 02:35

240811-c2187avfqa 10

18-02-2021 14:36

210218-e988k496be 10

Analysis

  • max time kernel
    197s
  • max time network
    187s
  • platform
    macos-10.15_amd64
  • resource
    macos-20240711.1-en
  • resource tags

    arch:amd64arch:i386image:macos-20240711.1-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    11-08-2024 02:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2aef1134cb696c922a06b71d58058d44e804391ff44cc5cd54335a1438fba58e.exe

  • Size

    118KB

  • MD5

    9c08dfc58885a9a7beca989ea5ee9108

  • SHA1

    ce2f51348da7a19dbf0e79b64f9eb8e46f45efa3

  • SHA256

    2aef1134cb696c922a06b71d58058d44e804391ff44cc5cd54335a1438fba58e

  • SHA512

    34cf39e4976f264f31b3236cca87aeca04ebc447fe99b35bbb72dd126462eed78310954fcdebab48b1f3ad9eaf5efe22ad8405b12d80ddd357244138067a1ae2

  • SSDEEP

    1536:pRGfmACfvCHeQ5EJRDKiMIfB6Ym5p/eyxICS4AxpoC3/0bZ2YySvKxBPyAU0DeWj:omRj6YaWm8/0bZCSvKDyhVv

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/2aef1134cb696c922a06b71d58058d44e804391ff44cc5cd54335a1438fba58e.exe\""
    1⤵
      PID:476
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/2aef1134cb696c922a06b71d58058d44e804391ff44cc5cd54335a1438fba58e.exe\""
      1⤵
        PID:476
      • /usr/bin/sudo
        sudo /bin/zsh -c /Users/run/2aef1134cb696c922a06b71d58058d44e804391ff44cc5cd54335a1438fba58e.exe
        1⤵
          PID:476
          • /bin/zsh
            /bin/zsh -c /Users/run/2aef1134cb696c922a06b71d58058d44e804391ff44cc5cd54335a1438fba58e.exe
            2⤵
              PID:479
            • /Users/run/2aef1134cb696c922a06b71d58058d44e804391ff44cc5cd54335a1438fba58e.exe
              /Users/run/2aef1134cb696c922a06b71d58058d44e804391ff44cc5cd54335a1438fba58e.exe
              2⤵
                PID:479
            • /usr/libexec/xpcproxy
              xpcproxy com.apple.Terminal.2100
              1⤵
                PID:525
              • /System/Applications/Utilities/Terminal.app/Contents/MacOS/Terminal
                /System/Applications/Utilities/Terminal.app/Contents/MacOS/Terminal
                1⤵
                  PID:525
                  • /usr/bin/login
                    login -pf run
                    2⤵
                      PID:526
                      • /bin/zsh
                        -zsh
                        3⤵
                          PID:527
                          • /usr/libexec/path_helper
                            /usr/libexec/path_helper -s
                            4⤵
                              PID:528
                            • /usr/bin/locale
                              locale LC_CTYPE
                              4⤵
                                PID:529

                        Network

                        MITRE ATT&CK Matrix

                        Replay Monitor

                        Loading Replay Monitor...

                        Downloads

                        • /dev/ttys000
                          MD5

                          d41d8cd98f00b204e9800998ecf8427e

                          SHA1

                          da39a3ee5e6b4b0d3255bfef95601890afd80709

                          SHA256

                          e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                          SHA512

                          cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

                          Download Submit