Overview

overview

10

Static

static

10

2024-12-24...ekoobe

macos-10.15-amd64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-24_cb32f55d412b1ccdfbe715a03597cd2e_adload_evilquest_rekoobe

  • Size

    168KB

  • Sample

    241224-lddyestnaz

  • MD5

    cb32f55d412b1ccdfbe715a03597cd2e

  • SHA1

    db139703895e3d3093871749022e4224f3b6ab81

  • SHA256

    a3426dd0addb3ba871c50ddd6e0a7abc35ace3aafcb21b82eaae0b958391fe08

  • SHA512

    42b17e56b85036d3608faf240e996e984af44c8eddfc57b211fcc70e989ae775697b0d2e80461dce26a002f0c470061c7b1e4e42194c1fba2ef5b9fa466bc0eb

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9Hqe3DrZg0:5SeOQdaZNxtk8cqhSxvHY9Hqe3DrZ

Score
10/10
evilquestexecutionmacospersistence

Malware Config

Targets

    • Target

      2024-12-24_cb32f55d412b1ccdfbe715a03597cd2e_adload_evilquest_rekoobe

    • Size

      168KB

    • MD5

      cb32f55d412b1ccdfbe715a03597cd2e

    • SHA1

      db139703895e3d3093871749022e4224f3b6ab81

    • SHA256

      a3426dd0addb3ba871c50ddd6e0a7abc35ace3aafcb21b82eaae0b958391fe08

    • SHA512

      42b17e56b85036d3608faf240e996e984af44c8eddfc57b211fcc70e989ae775697b0d2e80461dce26a002f0c470061c7b1e4e42194c1fba2ef5b9fa466bc0eb

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9Hqe3DrZg0:5SeOQdaZNxtk8cqhSxvHY9Hqe3DrZ

    Score
    5/10
    executionpersistence

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence

    • Launch Daemon

      Adversaries may create or modify Launch Daemons to execute malicious payloads as part of persistence. Launch Daemons are plist files used to interact with Launchd, the service management framework used by macOS.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks