Overview

overview

4

Static

static

1

ExtPack-license.html

windows7-x64

3

ExtPack-license.html

windows10-2004-x64

3

ExtPack-license.rtf

windows7-x64

4

ExtPack-license.rtf

windows10-2004-x64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd...eR0.r0

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

linux.amd6...cam.so

ubuntu-24.04-amd64

1

linux.amd6...eR0.r0

ubuntu-24.04-amd64

1

linux.amd6...eR3.so

ubuntu-20.04-amd64

1

linux.amd6...pto.so

ubuntu-24.04-amd64

1

linux.amd6...ain.so

ubuntu-18.04-amd64

1

linux.amd6...nVM.so

ubuntu-24.04-amd64

1

linux.amd6...rR3.so

ubuntu-24.04-amd64

1

linux.amd6...mR3.so

ubuntu-22.04-amd64

1

linux.amd6...RDP.so

ubuntu-24.04-amd64

1

Analysis

  • max time kernel
    64s
  • max time network
    128s
  • platform
    macos-10.15_amd64
  • resource
    macos-20241106-en
  • resource tags

    arch:amd64arch:i386image:macos-20241106-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    03/12/2024, 14:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    darwin.amd64/VBoxPuelMain.dylib

  • Size

    6.4MB

  • MD5

    9a61dbf04ddd5b3c342fedf974ec3d4c

  • SHA1

    c3807668d0b0b4edb733c1d246799423668a239f

  • SHA256

    7e4f6874a3d2dd7c5f4656cb0acaba2545e856be067cbae04804b461088a676e

  • SHA512

    776f68f4da4f86e2ca98f756d6d005d7702bd3810a068093c67e6552cf33ce38c52535cf52f2a13c570c29dfe98fc1a05a0f80661c396cd67810322cb84fb668

  • SSDEEP

    49152:kh95+AlX9d8ZFd+UQFa9BcHHLlMbfvwnP9vut3TahNXPZiMwfnC9UCvPJfFCiPpQ:SdX9OdVBBbQRNFacYb

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/darwin.amd64/VBoxPuelMain.dylib\""
    1⤵
      PID:491
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/darwin.amd64/VBoxPuelMain.dylib\""
      1⤵
        PID:491
      • /usr/bin/sudo
        sudo /bin/zsh -c /Users/run/darwin.amd64/VBoxPuelMain.dylib
        1⤵
          PID:491
          • /bin/zsh
            /bin/zsh -c /Users/run/darwin.amd64/VBoxPuelMain.dylib
            2⤵
              PID:492
            • /Users/run/darwin.amd64/VBoxPuelMain.dylib
              /Users/run/darwin.amd64/VBoxPuelMain.dylib
              2⤵
                PID:492

            Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads