Overview

overview

10

Static

static

10

2024-10-06...ekoobe

macos-10.15-amd64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-10-06_60c0e2d9f14a67484b91d176bc2daa6d_adload_evilquest_rekoobe

  • Size

    190KB

  • Sample

    241006-w64pnayfjq

  • MD5

    60c0e2d9f14a67484b91d176bc2daa6d

  • SHA1

    e612dfdf488c29ee5d750876770c37e85ca5d7e8

  • SHA256

    c653791f990931bd6dfb712b8df116f0550ce8cfb059f8ec15eb1592de996c51

  • SHA512

    0589f1146713455af77dde1a998e54e052fe6a777c0ee56dd9db8da2e5526be237cd471b7822a96e3878c5c72a00f0e515efe455aaa8fe31b1c626a16f9ca1c1

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9Uk0p2Dn5km:5SeOQdaZNxtk8cqhSxvHY9UV2Dn5km

Score
10/10
evilquestexecutionmacospersistence

Malware Config

Targets

    • Target

      2024-10-06_60c0e2d9f14a67484b91d176bc2daa6d_adload_evilquest_rekoobe

    • Size

      190KB

    • MD5

      60c0e2d9f14a67484b91d176bc2daa6d

    • SHA1

      e612dfdf488c29ee5d750876770c37e85ca5d7e8

    • SHA256

      c653791f990931bd6dfb712b8df116f0550ce8cfb059f8ec15eb1592de996c51

    • SHA512

      0589f1146713455af77dde1a998e54e052fe6a777c0ee56dd9db8da2e5526be237cd471b7822a96e3878c5c72a00f0e515efe455aaa8fe31b1c626a16f9ca1c1

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9Uk0p2Dn5km:5SeOQdaZNxtk8cqhSxvHY9UV2Dn5km

    Score
    5/10
    executionpersistence

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence

    • Launch Daemon

      Adversaries may create or modify Launch Daemons to execute malicious payloads as part of persistence. Launch Daemons are plist files used to interact with Launchd, the service management framework used by macOS.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks