Overview

overview

10

Static

static

10

2024-12-23...ekoobe

macos-10.15-amd64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-23_7666001fc7013684c448aef4b271b36e_adload_evilquest_rekoobe

  • Size

    168KB

  • Sample

    241223-23da7avken

  • MD5

    7666001fc7013684c448aef4b271b36e

  • SHA1

    67ffb3f4945b67effddcc65b2d10631ebb31fb9d

  • SHA256

    576ca37a5b0827048f3a25f529c948fec171ca9e409b0f63551426fcee24395d

  • SHA512

    979936a5d592cb0d012fedbdbb37b32292fce1bd6f320adfca39447cb06bd3514fa68ad6439c02398eae49c688aa2ad3825edb6268368dfa8fb58c8b7c1d5923

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9J0:5SeOQdaZNxtk8cqhSxvHY9

Score
10/10
evilquestevasionexecutionmacospersistence

Malware Config

Targets

    • Target

      2024-12-23_7666001fc7013684c448aef4b271b36e_adload_evilquest_rekoobe

    • Size

      168KB

    • MD5

      7666001fc7013684c448aef4b271b36e

    • SHA1

      67ffb3f4945b67effddcc65b2d10631ebb31fb9d

    • SHA256

      576ca37a5b0827048f3a25f529c948fec171ca9e409b0f63551426fcee24395d

    • SHA512

      979936a5d592cb0d012fedbdbb37b32292fce1bd6f320adfca39447cb06bd3514fa68ad6439c02398eae49c688aa2ad3825edb6268368dfa8fb58c8b7c1d5923

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9J0:5SeOQdaZNxtk8cqhSxvHY9

    Score
    5/10
    evasionexecutionpersistence

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence

    • Launch Daemon

      Adversaries may create or modify Launch Daemons to execute malicious payloads as part of persistence. Launch Daemons are plist files used to interact with Launchd, the service management framework used by macOS.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks