92d69b264f4f3d4c2f5ba4fd5c4700c2197b20d1ceea75c38a968be91ea6dc13 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

DocuSignWITWB.dmg

macos-10.15-amd64

8

DocuSignWI..._store

macos-10.15-amd64

1

DocuSignWI...nwitwb

macos-10.15-amd64

8

DocuSignWI...n.icns

macos-10.15-amd64

1

DocuSignWI...K3.png

macos-10.15-amd64

1

DocuSignWI...e:rsrc

macos-10.15-amd64

1

DocuSignWI...rminal

macos-10.15-amd64

1

Analysis

max time kernel
71s
max time network
127s
platform
macos-10.15_amd64
resource
macos-20241106-en
resource tags

arch:amd64arch:i386image:macos-20241106-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
20-11-2024 18:06

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

DocuSignWITWB.dmg

Resource

macos-20241106-en

discovery evasion execution exfiltration

macos-10.15-amd64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

DocuSignWITWB/.ds_store

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

DocuSignWITWB/.docusignwitwb

Resource

macos-20241106-en

evasion exfiltration

macos-10.15-amd64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

DocuSignWITWB/.VolumeIcon.icns

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

DocuSignWITWB/.background/SySbK3.png

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

DocuSignWITWB/DocuSignWITWB.file:rsrc

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

DocuSignWITWB/Terminal

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Report Analysis Logs

General

Target

DocuSignWITWB/Terminal
Size

864B
MD5

cd8faf1f135a3f8108f6d454afcbd23d
SHA1

dd6dd4623f68e9cfe1ec1bc6557bf3cf8af82819
SHA256

883e8357ce58047751efda8f7e5129c9e51f248d558f0d0c825853c3e740a1a8
SHA512

c9a876e258d434c248c7c49ff4190f0847092801e6534c43110de0c1368ffbe515b7f54da4a20d36e49ffefaaf2aaf1813fc4e3bb6b2f62094da3a15a5003622

Score

1^/10

Malware Config

Signatures

Processes

/bin/sh
sh -c "sudo /bin/zsh -c \"/Users/run/DocuSignWITWB/Terminal\""
1⤵
PID:462

/bin/bash
sh -c "sudo /bin/zsh -c \"/Users/run/DocuSignWITWB/Terminal\""
1⤵
PID:462

/usr/bin/sudo
sudo /bin/zsh -c /Users/run/DocuSignWITWB/Terminal
1⤵
PID:462
- /bin/zsh
  /bin/zsh -c /Users/run/DocuSignWITWB/Terminal
  2⤵
  PID:464
- /Users/run/DocuSignWITWB/Terminal
  /Users/run/DocuSignWITWB/Terminal
  2⤵
  PID:464

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy