Overview

overview

10

Static

static

10

2024-12-19...ekoobe

macos-10.15-amd64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-19_2d15c816826bf21e01fecde56f00ee13_adload_evilquest_rekoobe

  • Size

    190KB

  • Sample

    241219-lsqkrsyrds

  • MD5

    2d15c816826bf21e01fecde56f00ee13

  • SHA1

    460b6a50d745ce20431c6e0e0346ee284cbb9173

  • SHA256

    cac515badb605cef28052c10ebc19a3cf6a3eeabc240b4c4e1108237071be1c5

  • SHA512

    e290f212bff5f5701e9c9ed4ef1d88f4e3bc3b261401d3352c89c37fca0cdf65ac150568852b9ff124584223298e2eb2cc2b755881b627e736086523b85b4e8a

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9jYzFt0p2Dn5km:5SeOQdaZNxtk8cqhSxvHY9cpM2Dn5km

Score
10/10
evilquestevasionexecutionmacospersistence

Malware Config

Targets

    • Target

      2024-12-19_2d15c816826bf21e01fecde56f00ee13_adload_evilquest_rekoobe

    • Size

      190KB

    • MD5

      2d15c816826bf21e01fecde56f00ee13

    • SHA1

      460b6a50d745ce20431c6e0e0346ee284cbb9173

    • SHA256

      cac515badb605cef28052c10ebc19a3cf6a3eeabc240b4c4e1108237071be1c5

    • SHA512

      e290f212bff5f5701e9c9ed4ef1d88f4e3bc3b261401d3352c89c37fca0cdf65ac150568852b9ff124584223298e2eb2cc2b755881b627e736086523b85b4e8a

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9jYzFt0p2Dn5km:5SeOQdaZNxtk8cqhSxvHY9cpM2Dn5km

    Score
    5/10
    evasionexecutionpersistence

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence

    • Launch Daemon

      Adversaries may create or modify Launch Daemons to execute malicious payloads as part of persistence. Launch Daemons are plist files used to interact with Launchd, the service management framework used by macOS.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks