9ab258db43693b78593325ee6bdd1ff2632b7db42d31eb35ba5118d0e5729ed5

Analysis

max time kernel
99s
max time network
161s
platform
macos-10.15_amd64
resource
macos-20240711.1-en
resource tags

arch:amd64arch:i386image:macos-20240711.1-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
05/09/2024, 08:38 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Minecraft/Minecraft.app/Contents/runtime/jre-x64/1.8.0_74/bin/unpack200
Size

113KB
MD5

a9f4c2e7ecfbcc31b9cd25aa2c167803
SHA1

9c4b237ea4c45cd13c594c364236dcf9e91cdb5d
SHA256

c2b6ec3821457463c954dbff5f03f6bb4e416c35089cc28abe08d8bd13ff0661
SHA512

bfd1b0b559a56d7f2a3082a756848440e51cec46d14b957e84347fc134cb095a5effc1ae9f4d43ae8d00540471bb0042b3439049ab2bd16a48587a671e444b76
SSDEEP

3072:eRAFuS7vDfl+lsI7LPcWt6UvQ5mYd5A4vK3q1eKSs3FLK:eorD7la1LVFvOd5A4v6KSso

Score

1^/10

Malware Config

Signatures

/bin/sh
sh -c "sudo /bin/zsh -c \"/Users/run/Minecraft/Minecraft.app/Contents/runtime/jre-x64/1.8.0_74/bin/unpack200\""
1⤵
PID:513

/bin/bash
sh -c "sudo /bin/zsh -c \"/Users/run/Minecraft/Minecraft.app/Contents/runtime/jre-x64/1.8.0_74/bin/unpack200\""
1⤵
PID:513

/usr/bin/sudo
sudo /bin/zsh -c /Users/run/Minecraft/Minecraft.app/Contents/runtime/jre-x64/1.8.0_74/bin/unpack200
1⤵
PID:513
- /bin/zsh
  /bin/zsh -c /Users/run/Minecraft/Minecraft.app/Contents/runtime/jre-x64/1.8.0_74/bin/unpack200
  2⤵
  PID:514
- /Users/run/Minecraft/Minecraft.app/Contents/runtime/jre-x64/1.8.0_74/bin/unpack200
  /Users/run/Minecraft/Minecraft.app/Contents/runtime/jre-x64/1.8.0_74/bin/unpack200
  2⤵
  PID:514

/usr/libexec/xpcproxy
xpcproxy com.apple.sysmond
1⤵
PID:515

/usr/libexec/sysmond
/usr/libexec/sysmond
1⤵
PID:515

/usr/libexec/xpcproxy
xpcproxy com.apple.audio.AudioComponentRegistrar
1⤵
PID:517

/System/Library/Frameworks/AudioToolbox.framework/AudioComponentRegistrar
/System/Library/Frameworks/AudioToolbox.framework/AudioComponentRegistrar -daemon
1⤵
PID:517

/usr/libexec/xpcproxy
xpcproxy com.apple.corespotlightservice.725FD30A-6064-6C02-CC51-5DDB8891B57E
1⤵
PID:530

/System/Library/Frameworks/CoreSpotlight.framework/CoreSpotlightService
/System/Library/Frameworks/CoreSpotlight.framework/CoreSpotlightService
1⤵
PID:530

/bin/launchctl
/bin/launchctl kill SIGTERM system/com.microsoft.OneDriveUpdaterDaemon
1⤵
PID:535

/bin/launchctl
/bin/launchctl kill SIGTERM system/com.microsoft.OneDriveStandaloneUpdaterDaemon
1⤵
PID:536

Network

DNS

cds.apple.com

Remote address:

8.8.8.8:53

Request

cds.apple.com

IN A

Response

cds.apple.com

IN CNAME

cds-cdn.v.aaplimg.com

cds-cdn.v.aaplimg.com

IN CNAME

cds.apple.com.akadns.net

cds.apple.com.akadns.net

IN CNAME

cds.apple.com.edgekey.net

cds.apple.com.edgekey.net

IN CNAME

e14768.dscb.akamaiedge.net

e14768.dscb.akamaiedge.net

IN A

104.103.245.125
DNS

help.apple.com

Remote address:

8.8.8.8:53

Request

help.apple.com

IN A

Response

help.apple.com

IN CNAME

help.origin-apple.com.akadns.net

help.origin-apple.com.akadns.net

IN CNAME

help-ar.apple.com.edgekey.net

help-ar.apple.com.edgekey.net

IN CNAME

e11408.d.akamaiedge.net

e11408.d.akamaiedge.net

IN A

2.18.109.84

104.103.245.125:443

cds.apple.com

tls

18.9kB
164.8kB
215
197
2.18.109.84:443

help.apple.com

tls

29.1kB
112.7kB
157
125
2.18.109.84:443

help.apple.com

tls

1.8kB
1.4kB
13
10

8.8.8.8:53

cds.apple.com

dns

59 B
218 B
1
1

DNS Request

cds.apple.com

DNS Response

104.103.245.125
8.8.8.8:53

help.apple.com

dns

60 B
196 B
1
1

DNS Request

help.apple.com

DNS Response

2.18.109.84
224.0.0.251:5353

332 B
1

Windows 7 deprecation

DNS Request

DNS Response

DNS Request

DNS Response

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

DNS Request

DNS Response

DNS Request

DNS Response

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.