Analysis

  • max time kernel
    69s
  • max time network
    128s
  • platform
    macos-10.15_amd64
  • resource
    macos-20241106-en
  • resource tags

    arch:amd64arch:i386image:macos-20241106-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    19-11-2024 18:04

General

  • Target

    c2-3.4.0_amd64_darwin

  • Size

    13.1MB

  • MD5

    191cce9f1f9ba0f36c58ca139f3cba79

  • SHA1

    267ed388d89f7a3d717967852b0a125fdaf9f26b

  • SHA256

    752b696841027c3767aa5d6582c03111e7fe0ab05f63905313ae7ce089e8e584

  • SHA512

    a082f0cb0c565fcc54a01d47189daa1121f62d0797a67cd5aee2f85c899fd2930dca44bbb30200db4fd87acbcebfb873a4833fb19a9cb197d74bf810835c7471

  • SSDEEP

    98304:kkRA8XlIol2Dwhic0tM/A8LEMuOTn4RNYHS46ZFx0rJjfc:k6SikemOYg4RNYHS462

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/c2-3.4.0_amd64_darwin\""
    1⤵
      PID:488
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/c2-3.4.0_amd64_darwin\""
      1⤵
        PID:488
      • /usr/bin/sudo
        sudo /bin/zsh -c /Users/run/c2-3.4.0_amd64_darwin
        1⤵
          PID:488
          • /bin/zsh
            /bin/zsh -c /Users/run/c2-3.4.0_amd64_darwin
            2⤵
              PID:489
            • /Users/run/c2-3.4.0_amd64_darwin
              /Users/run/c2-3.4.0_amd64_darwin
              2⤵
                PID:489
                • /Users/run/c2-3.4.0_amd64_darwin
                  /Users/run/c2-3.4.0_amd64_darwin
                  3⤵
                    PID:490

              Network

              MITRE ATT&CK Matrix

              Replay Monitor

              Loading Replay Monitor...

              Downloads

              • /Users/run/c2-3.4.0_amd64_darwin

                Filesize

                13.1MB

                MD5

                191cce9f1f9ba0f36c58ca139f3cba79

                SHA1

                267ed388d89f7a3d717967852b0a125fdaf9f26b

                SHA256

                752b696841027c3767aa5d6582c03111e7fe0ab05f63905313ae7ce089e8e584

                SHA512

                a082f0cb0c565fcc54a01d47189daa1121f62d0797a67cd5aee2f85c899fd2930dca44bbb30200db4fd87acbcebfb873a4833fb19a9cb197d74bf810835c7471