Overview

overview

10

Static

static

10

20240906b9...ekoobe

macos-10.15-amd64

1

Analysis

  • max time kernel
    109s
  • max time network
    147s
  • platform
    macos-10.15_amd64
  • resource
    macos-20240711.1-en
  • resource tags

    arch:amd64arch:i386image:macos-20240711.1-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    06-09-2024 06:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    20240906b9d9c640ae8635c41645f69d838daccfadloadevilquestrekoobe

  • Size

    168KB

  • MD5

    b9d9c640ae8635c41645f69d838daccf

  • SHA1

    bdc6fe45198c9de57278a40e95116deb3438a024

  • SHA256

    eaff00bb9a60ca15c4ffcce8139badc707c6ee2a67aefad584fdeb0ae32291eb

  • SHA512

    4ed8dd17f8ff94ff7cb67e2dc8818cc7840f252e094a2863dd0b8500868147d2fc600d3d9c97c8e1f43b9195c5ce47c5039b8f980b0e9e8c821160f733be354f

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9W0:5SeOQdaZNxtk8cqhSxvHY9

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/20240906b9d9c640ae8635c41645f69d838daccfadloadevilquestrekoobe\""
    1⤵
      PID:477
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/20240906b9d9c640ae8635c41645f69d838daccfadloadevilquestrekoobe\""
      1⤵
        PID:477
      • /usr/bin/sudo
        sudo /bin/zsh -c /Users/run/20240906b9d9c640ae8635c41645f69d838daccfadloadevilquestrekoobe
        1⤵
          PID:477
          • /bin/zsh
            /bin/zsh -c /Users/run/20240906b9d9c640ae8635c41645f69d838daccfadloadevilquestrekoobe
            2⤵
              PID:480
            • /Users/run/20240906b9d9c640ae8635c41645f69d838daccfadloadevilquestrekoobe
              /Users/run/20240906b9d9c640ae8635c41645f69d838daccfadloadevilquestrekoobe
              2⤵
                PID:480
            • /bin/sh
              sh -c "sysctl -n hw.ncpu"
              1⤵
                PID:481
              • /bin/bash
                sh -c "sysctl -n hw.ncpu"
                1⤵
                  PID:481
                • /usr/sbin/sysctl
                  sysctl -n hw.ncpu
                  1⤵
                    PID:481

                  Network

                  MITRE ATT&CK Matrix

                  Replay Monitor

                  Loading Replay Monitor...

                  Downloads