Overview

overview

6

Static

static

6

Payload/Sp...ts.pdf

windows7-x64

3

Payload/Sp...ts.pdf

windows10-2004-x64

3

Payload/Sp...s/cycc

ubuntu-18.04-amd64

1

Payload/Sp...s/cycc

debian-9-armhf

1

Payload/Sp...s/cycc

debian-9-mips

1

Payload/Sp...s/cycc

debian-9-mipsel

1

Payload/Sp...ynject

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Payload/Sp....dylib

macos-10.15-amd64

1

Analysis

  • max time kernel
    78s
  • max time network
    109s
  • platform
    macos-10.15_amd64
  • resource
    macos-20241106-en
  • resource tags

    arch:amd64arch:i386image:macos-20241106-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    03/12/2024, 12:23 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Payload/Spotify.app/Frameworks/libswiftContacts.dylib

  • Size

    77KB

  • MD5

    1b7a29ec34f6b672d54cd2a49b6f6028

  • SHA1

    5995c500c3e550095da351d4d472c38ccf21f58f

  • SHA256

    c74eb86f3a0ea99f46eeec070dc1412ff766ab1c16e4d424c7cb9277479363ac

  • SHA512

    04e6f61fc37a00dac54620dc2b5fb5b6a432102dc0303e3c9b868f1faa47728714411680c8503552be8c2ad4c654be944d2a2b82f0672a29d532bc4e50bed3ee

  • SSDEEP

    768:sbWUBndthXWu7osmJBNzHnI+hmVeLvue8:wBdthXWOtU3Hpue

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/Payload/Spotify.app/Frameworks/libswiftContacts.dylib\""
    1⤵
      PID:488
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/Payload/Spotify.app/Frameworks/libswiftContacts.dylib\""
      1⤵
        PID:488
      • /usr/bin/sudo
        sudo /bin/zsh -c /Users/run/Payload/Spotify.app/Frameworks/libswiftContacts.dylib
        1⤵
          PID:488
          • /bin/zsh
            /bin/zsh -c /Users/run/Payload/Spotify.app/Frameworks/libswiftContacts.dylib
            2⤵
              PID:489
            • /Users/run/Payload/Spotify.app/Frameworks/libswiftContacts.dylib
              /Users/run/Payload/Spotify.app/Frameworks/libswiftContacts.dylib
              2⤵
                PID:489

            Network

            • flag-us
              DNS
              lb._dns-sd._udp.0.0.127.10.in-addr.arpa
              Remote address:
              8.8.8.8:53
              Request
              lb._dns-sd._udp.0.0.127.10.in-addr.arpa
              IN PTR
              Response
            No results found
            • 8.8.8.8:53
              lb._dns-sd._udp.0.0.127.10.in-addr.arpa
              dns
              85 B
               85 B
               1
              1

              DNS Request

              lb._dns-sd._udp.0.0.127.10.in-addr.arpa

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            We care about your privacy.

            This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.