6d74118c36505cb6082f9eac318185ab3a74483f1f65741ccca2908bb782851f | Triage

Resubmissions

17/08/2024, 22:37

240817-2j9kaaterj 4

17/08/2024, 22:30

240817-2e4s8s1brh 8

17/08/2024, 22:27

240817-2db2tstcjk 4

17/08/2024, 22:25

240817-2b9v3stbnm 1

17/08/2024, 22:21

240817-19t2vatanm 3

Sharing

Copy URL Twitter E-mail

General

Target

error
Size

4KB
Sample

240817-2e4s8s1brh
MD5

9a421c881dc0bce277d14f1c3aa94542
SHA1

3765386870dfa67900ef606391c1fa3813547223
SHA256

6d74118c36505cb6082f9eac318185ab3a74483f1f65741ccca2908bb782851f
SHA512

93b6c94bf47942fde392f0d56562dda56544227b7744a093141ef132d9810836d7406a81dee30833f622e5bcca7423cbc955b0979b7eed66296d14f53e9b672f
SSDEEP

48:47reqc7QufT7zUkdMYSC8UGeD5ADJwAAIvsjeHG+eNHmQEm+/+1sS:47rex7brskdMYSWVAKCvqx9NN3+/63

Score

8^/10

discovery evasion macos

Malware Config

Targets

- Target
  
  error
- Size
  
  4KB
- MD5
  
  9a421c881dc0bce277d14f1c3aa94542
- SHA1
  
  3765386870dfa67900ef606391c1fa3813547223
- SHA256
  
  6d74118c36505cb6082f9eac318185ab3a74483f1f65741ccca2908bb782851f
- SHA512
  
  93b6c94bf47942fde392f0d56562dda56544227b7744a093141ef132d9810836d7406a81dee30833f622e5bcca7423cbc955b0979b7eed66296d14f53e9b672f
- SSDEEP
  
  48:47reqc7QufT7zUkdMYSC8UGeD5ADJwAAIvsjeHG+eNHmQEm+/+1sS:47rex7brskdMYSWVAKCvqx9NN3+/63
Score

8^/10

discovery evasion
- Path Permission
  Adversaries may modify directory permissions/attributes to evade access control lists (ACLs) and access protected files.
  evasion
- Gatekeeper Bypass
  Adversaries may modify file attributes and subvert Gatekeeper functionality to evade user prompts and execute untrusted programs. Gatekeeper is a set of technologies that act as layer of Apples security model to ensure only trusted applications are executed on a host.
  evasion
- File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity. Malware, tools, or other non-native files dropped or created on a system by an adversary (ex: Ingress Tool Transfer) may leave traces to indicate to what was done within a network and how. Removal of these files can occur.
  evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Linux and Mac File and Directory Permissions Modification

Hide Artifacts

Resource Forking

Indicator Removal

File Deletion

Subvert Trust Controls

Gatekeeper Bypass

Credential Access

Discovery

File and Directory Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion