Overview

overview

10

Static

static

10

2024-12-23...ekoobe

macos-10.15-amd64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-23_05a2756c4ec6e20ce598f06b74a1086a_adload_evilquest_rekoobe

  • Size

    168KB

  • Sample

    241223-2z5w2atqgy

  • MD5

    05a2756c4ec6e20ce598f06b74a1086a

  • SHA1

    516eb5adcf07eefc6faadac77e89fe8f95eed879

  • SHA256

    1fcf3bf382eab70a04fd12e1432b138abfb7cfdad0fdc17885767b6a889a8f3f

  • SHA512

    5b50ec981b202719e675ee6e1bcd6304a018633cbf055330bf95c38eeed73db114807e8fd7901dccf9199099521e840c6bc6903ae5bed48c1246350cef864d2b

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9pe0:5SeOQdaZNxtk8cqhSxvHY9

Score
10/10
evilquestexecutionmacospersistence

Malware Config

Targets

    • Target

      2024-12-23_05a2756c4ec6e20ce598f06b74a1086a_adload_evilquest_rekoobe

    • Size

      168KB

    • MD5

      05a2756c4ec6e20ce598f06b74a1086a

    • SHA1

      516eb5adcf07eefc6faadac77e89fe8f95eed879

    • SHA256

      1fcf3bf382eab70a04fd12e1432b138abfb7cfdad0fdc17885767b6a889a8f3f

    • SHA512

      5b50ec981b202719e675ee6e1bcd6304a018633cbf055330bf95c38eeed73db114807e8fd7901dccf9199099521e840c6bc6903ae5bed48c1246350cef864d2b

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9pe0:5SeOQdaZNxtk8cqhSxvHY9

    Score
    5/10
    executionpersistence

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence

    • Launch Daemon

      Adversaries may create or modify Launch Daemons to execute malicious payloads as part of persistence. Launch Daemons are plist files used to interact with Launchd, the service management framework used by macOS.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks