Overview

overview

8

Static

static

1

URLScan

urlscan

1

https://drive.google...

windows10-2004-x64

6

https://drive.google...

android-13-x64

6

https://drive.google...

android-9-x86

6

https://drive.google...

macos-10.15-amd64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://drive.google.com/uc?export=download&id=1wVutybRK2Eyn6Lz3w3Dlm9T488StOlvk

  • Sample

    241212-tkpbqs1neq

Score
8/10
androiddiscoveryevasionmacospersistenceprivilege_escalation

Malware Config

Targets

    • Target

      https://drive.google.com/uc?export=download&id=1wVutybRK2Eyn6Lz3w3Dlm9T488StOlvk

    Score
    8/10
    discoverypersistenceprivilege_escalationevasion

    • Path Permission

      Adversaries may modify directory permissions/attributes to evade access control lists (ACLs) and access protected files.

      evasion

    • Gatekeeper Bypass

      Adversaries may modify file attributes and subvert Gatekeeper functionality to evade user prompts and execute untrusted programs. Gatekeeper is a set of technologies that act as layer of Apples security model to ensure only trusted applications are executed on a host.

      evasion

    • Legitimate hosting services abused for malware hosting/C2

    • File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity. Malware, tools, or other non-native files dropped or created on a system by an adversary (ex: Ingress Tool Transfer) may leave traces to indicate to what was done within a network and how. Removal of these files can occur.

      evasion
    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Enterprise v15

MITRE ATT&CK Mobile v15

Tasks