92d69b264f4f3d4c2f5ba4fd5c4700c2197b20d1ceea75c38a968be91ea6dc13 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

DocuSignWITWB.dmg

macos-10.15-amd64

8

DocuSignWI..._store

macos-10.15-amd64

1

DocuSignWI...nwitwb

macos-10.15-amd64

8

DocuSignWI...n.icns

macos-10.15-amd64

1

DocuSignWI...K3.png

macos-10.15-amd64

1

DocuSignWI...e:rsrc

macos-10.15-amd64

1

DocuSignWI...rminal

macos-10.15-amd64

1

Analysis

max time kernel
78s
max time network
151s
platform
macos-10.15_amd64
resource
macos-20241101-en
resource tags

arch:amd64arch:i386image:macos-20241101-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
20-11-2024 18:06

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

DocuSignWITWB.dmg

Resource

macos-20241106-en

discovery evasion execution exfiltration

macos-10.15-amd64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

DocuSignWITWB/.ds_store

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

DocuSignWITWB/.docusignwitwb

Resource

macos-20241106-en

evasion exfiltration

macos-10.15-amd64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

DocuSignWITWB/.VolumeIcon.icns

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

DocuSignWITWB/.background/SySbK3.png

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

DocuSignWITWB/DocuSignWITWB.file:rsrc

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

DocuSignWITWB/Terminal

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Report Analysis Logs

General

Target

DocuSignWITWB/.VolumeIcon.icns
Size

91KB
MD5

52437fdadeec71318be0b76067674a6b
SHA1

adc67c2d8f9a455766376511eb1397969ad33850
SHA256

48cee76ceec4cdfe0f2cac440d3e0eac156bb1a5014a65b75928da9329e95015
SHA512

6ca58da862082c05162f9cf5e4a39188019cc0c457ba6e047e2c4a5cabfe5be0e8c3e6a1256cd50cfba64661ac31bf6600e2c6ab13532638a00ce34a50057e7b
SSDEEP

1536:c/CiYCiYCiu+C+C+fmfbvmfbvmfbDzXM31PuRwuvDzXM31PuRwuvDzXM31PuRwuI:c/tYtYtu+C+C+fKvKvKofuwfuwfuI

Score

1^/10

Malware Config

Signatures

Processes

/bin/sh
sh -c "sudo /bin/zsh -c \"/Users/run/DocuSignWITWB/.VolumeIcon.icns\""
1⤵
PID:464

/bin/bash
sh -c "sudo /bin/zsh -c \"/Users/run/DocuSignWITWB/.VolumeIcon.icns\""
1⤵
PID:464

/usr/bin/sudo
sudo /bin/zsh -c /Users/run/DocuSignWITWB/.VolumeIcon.icns
1⤵
PID:464
- /bin/zsh
  /bin/zsh -c /Users/run/DocuSignWITWB/.VolumeIcon.icns
  2⤵
  PID:465
- /Users/run/DocuSignWITWB/.VolumeIcon.icns
  /Users/run/DocuSignWITWB/.VolumeIcon.icns
  2⤵
  PID:465

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy