Overview

overview

10

Static

static

10

2024-12-23...ekoobe

macos-10.15-amd64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-23_eba59d94c49cb29fbfe3aa788d309a9c_adload_evilquest_rekoobe

  • Size

    168KB

  • Sample

    241223-25s5esvjby

  • MD5

    eba59d94c49cb29fbfe3aa788d309a9c

  • SHA1

    96a6d36832d5560c1ed4f735172b9f42811acd1e

  • SHA256

    7e4678ea3aeb5375f43890950f93217d3c40474f55893b015e2e0aeb9cfbfce6

  • SHA512

    90ee35562660e8f018433e8ba89ef96575a4e366f0761969b8c288696b5a327f7fe0c8fbf9e671a9032f5840a8c0bcebed8ebc54b525f243a7cf6c0d50534e4d

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9QxE0:5SeOQdaZNxtk8cqhSxvHY9Qx

Score
10/10
evilquestexecutionmacospersistence

Malware Config

Targets

    • Target

      2024-12-23_eba59d94c49cb29fbfe3aa788d309a9c_adload_evilquest_rekoobe

    • Size

      168KB

    • MD5

      eba59d94c49cb29fbfe3aa788d309a9c

    • SHA1

      96a6d36832d5560c1ed4f735172b9f42811acd1e

    • SHA256

      7e4678ea3aeb5375f43890950f93217d3c40474f55893b015e2e0aeb9cfbfce6

    • SHA512

      90ee35562660e8f018433e8ba89ef96575a4e366f0761969b8c288696b5a327f7fe0c8fbf9e671a9032f5840a8c0bcebed8ebc54b525f243a7cf6c0d50534e4d

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9QxE0:5SeOQdaZNxtk8cqhSxvHY9Qx

    Score
    5/10
    executionpersistence

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence

    • Launch Daemon

      Adversaries may create or modify Launch Daemons to execute malicious payloads as part of persistence. Launch Daemons are plist files used to interact with Launchd, the service management framework used by macOS.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks