Overview

overview

1

Static

static

1

4e3464a13b...77.zip

macos-10.15-amd64

1

Payload/Tr...2x.png

macos-10.15-amd64

1

Payload/Tr...ad.png

macos-10.15-amd64

1

Payload/Tr...ts.car

macos-10.15-amd64

1

Payload/Tr....dylib

macos-10.15-amd64

1

Payload/Tr....plist

macos-10.15-amd64

1

Payload/Tr...kgInfo

macos-10.15-amd64

1

Payload/Tr...allerX

macos-10.15-amd64

1

Payload/Tr...ore.gz

macos-10.15-amd64

1

TrollStore.tar

macos-10.15-amd64

1

TrollStore...29.jpg

macos-10.15-amd64

1

TrollStore...2x.jpg

macos-10.15-amd64

1

TrollStore...3x.jpg

macos-10.15-amd64

1

TrollStore...40.jpg

macos-10.15-amd64

1

TrollStore...2x.jpg

macos-10.15-amd64

1

TrollStore...3x.jpg

macos-10.15-amd64

1

TrollStore...50.jpg

macos-10.15-amd64

1

TrollStore...2x.jpg

macos-10.15-amd64

1

TrollStore...57.jpg

macos-10.15-amd64

1

TrollStore...2x.jpg

macos-10.15-amd64

1

TrollStore...3x.png

macos-10.15-amd64

1

TrollStore...60.jpg

macos-10.15-amd64

1

TrollStore...2x.jpg

macos-10.15-amd64

1

TrollStore...3x.jpg

macos-10.15-amd64

1

TrollStore...72.jpg

macos-10.15-amd64

1

TrollStore...2x.jpg

macos-10.15-amd64

1

TrollStore...Helper

macos-10.15-amd64

1

TrollStore...lStore

macos-10.15-amd64

1

TrollStore...helper

macos-10.15-amd64

1

Payload/Tr...es.xml

macos-10.15-amd64

1

Payload/Tr....dylib

macos-10.15-amd64

1

Analysis

  • max time kernel
    66s
  • max time network
    58s
  • platform
    macos-10.15_amd64
  • resource
    macos-20240711.1-en
  • resource tags

    arch:amd64arch:i386image:macos-20240711.1-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    18/08/2024, 10:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Payload/TrollInstallerX.app/[email protected]

  • Size

    9KB

  • MD5

    1e568c1b6e726090da5a03c9cafb74ec

  • SHA1

    06fb97f8207c0551ada0f01da9ff0dfcaaa5a9fd

  • SHA256

    f16944a0c5227c34f0f97f2d15167533f95f92de98f853ef79010809e2dff2d0

  • SHA512

    83bfbbd426d267e6b90d8596ada2d47e4c5a5fc4f1573bbde2b231f65a8864ddc46852ea3595314d4e151fad161594e45ed9548c093fab8f0d960c9a1d75c771

  • SSDEEP

    192:uQcy5Iar7Lp29MP/bwAPuWkPXjx/XDhAM+z8+pmhaf5mB0xv0fim3w/:IyuaDpDP/vkvjx/toz8+pmaDF0fim3a

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/Payload/TrollInstallerX.app/[email protected]\""
    1⤵
      PID:490
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/Payload/TrollInstallerX.app/[email protected]\""
      1⤵
        PID:490
      • /usr/libexec/xpcproxy
        xpcproxy com.apple.corespotlightservice.725FD30A-6064-6C02-CC51-5DDB8891B57E
        1⤵
          PID:529
        • /System/Library/Frameworks/CoreSpotlight.framework/CoreSpotlightService
          /System/Library/Frameworks/CoreSpotlight.framework/CoreSpotlightService
          1⤵
            PID:529

          Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads