Overview

overview

10

Static

static

10

2024-12-23...ekoobe

macos-10.15-amd64

1

Analysis

  • max time kernel
    71s
  • max time network
    126s
  • platform
    macos-10.15_amd64
  • resource
    macos-20241106-en
  • resource tags

    arch:amd64arch:i386image:macos-20241106-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    23-12-2024 23:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-12-23_53c56601bdd885e57ff4fa56188eb830_adload_evilquest_rekoobe

  • Size

    277KB

  • MD5

    53c56601bdd885e57ff4fa56188eb830

  • SHA1

    9fa3472f4caf9f2d5db84094e27b5af4f2dda56d

  • SHA256

    a31f248ea5928de23a3c9a49c6d7e2b70e75025ae51400ab66c7b78fafda1d5e

  • SHA512

    9548309a726a96ec1eab224899e56ca4adb462e0b7c8424c6692957b53fa89186c8c22564349f14f4d7b1810819a44c90622dead44c30b22b83c4b6b853cee80

  • SSDEEP

    6144:SD3AodDD1VhK1dUxdA3vb5KJS7/qGLFzqWc:SD35Bfi3vb5KJS7/qum

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/2024-12-23_53c56601bdd885e57ff4fa56188eb830_adload_evilquest_rekoobe\""
    1⤵
      PID:462
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/2024-12-23_53c56601bdd885e57ff4fa56188eb830_adload_evilquest_rekoobe\""
      1⤵
        PID:462
      • /usr/bin/sudo
        sudo /bin/zsh -c /Users/run/2024-12-23_53c56601bdd885e57ff4fa56188eb830_adload_evilquest_rekoobe
        1⤵
          PID:462
          • /bin/zsh
            /bin/zsh -c /Users/run/2024-12-23_53c56601bdd885e57ff4fa56188eb830_adload_evilquest_rekoobe
            2⤵
              PID:465
            • /Users/run/2024-12-23_53c56601bdd885e57ff4fa56188eb830_adload_evilquest_rekoobe
              /Users/run/2024-12-23_53c56601bdd885e57ff4fa56188eb830_adload_evilquest_rekoobe
              2⤵
                PID:465
            • /bin/sh
              sh -c "�;^C����zH!�����d�[A����"
              1⤵
                PID:467
              • /bin/bash
                sh -c "�;^C����zH!�����d�[A����"
                1⤵
                  PID:467
                • /bin/sh
                  sh -c "�;^C����zH!�����d�[A����"
                  1⤵
                    PID:471
                  • /bin/bash
                    sh -c "�;^C����zH!�����d�[A����"
                    1⤵
                      PID:471
                    • /bin/sh
                      sh -c "�;^C����zH!�����d�[A����"
                      1⤵
                        PID:474
                      • /bin/bash
                        sh -c "�;^C����zH!�����d�[A����"
                        1⤵
                          PID:474
                        • /bin/sh
                          sh -c "�;^C����zH!�����d�[A����"
                          1⤵
                            PID:477
                          • /bin/bash
                            sh -c "�;^C����zH!�����d�[A����"
                            1⤵
                              PID:477

                            Network

                            MITRE ATT&CK Matrix

                            Replay Monitor

                            Loading Replay Monitor...

                            Downloads