Overview

overview

10

Static

static

10

2024-12-24...ekoobe

macos-10.15-amd64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-24_02388720d102548b023d195257a77672_adload_evilquest_rekoobe

  • Size

    168KB

  • Sample

    241224-ldqbfstnbz

  • MD5

    02388720d102548b023d195257a77672

  • SHA1

    eef6713249b2577f884e5805a2bfcfa2acd5144a

  • SHA256

    bbe624417e7cab2fd2cbe00f0601d3853d5e6187601aeddc9f77b21bb54acd1b

  • SHA512

    7042e03b476b283ec3cdfaf8e054bf25267e53007829603a1fbf956fb969b1d71d976a58d94b2beacf11faaccb02e901fcd91115e651aae254338afaed1581a9

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9jx0:5SeOQdaZNxtk8cqhSxvHY9

Score
10/10
evilquestexecutionmacospersistence

Malware Config

Targets

    • Target

      2024-12-24_02388720d102548b023d195257a77672_adload_evilquest_rekoobe

    • Size

      168KB

    • MD5

      02388720d102548b023d195257a77672

    • SHA1

      eef6713249b2577f884e5805a2bfcfa2acd5144a

    • SHA256

      bbe624417e7cab2fd2cbe00f0601d3853d5e6187601aeddc9f77b21bb54acd1b

    • SHA512

      7042e03b476b283ec3cdfaf8e054bf25267e53007829603a1fbf956fb969b1d71d976a58d94b2beacf11faaccb02e901fcd91115e651aae254338afaed1581a9

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9jx0:5SeOQdaZNxtk8cqhSxvHY9

    Score
    5/10
    executionpersistence

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence

    • Launch Daemon

      Adversaries may create or modify Launch Daemons to execute malicious payloads as part of persistence. Launch Daemons are plist files used to interact with Launchd, the service management framework used by macOS.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks