fakelockbit | 14fe0071e76b23673569115042a961136ef057848ad44cf35d9f2ca86bd90d31 | Triage

Resubmissions

26/12/2024, 10:24

241226-mft8vssrav 10

21/10/2024, 08:58

241021-kw6kqaxeme 4

Sharing

General

Target

14fe0071e76b23673569115042a961136ef057848ad44cf35d9f2ca86bd90d31
Size

8.8MB
Sample

241226-mft8vssrav
MD5

06bd47b8ec7e6277dc6c8842d00f7243
SHA1

23f3b070aad47f72ddf2d148f455cce2266901fd
SHA256

14fe0071e76b23673569115042a961136ef057848ad44cf35d9f2ca86bd90d31
SHA512

299febd21383786c542d8fa79dc6d04aba61675c82ab889da9987404d2a78fd036ffab8b88712152b1ec57f06db4960e9391b6fc1c5fed447e48effb8aefbd50
SSDEEP

49152:m+9o0usEBuQ61RnzrmY+PLXkQF/S/BlFayqYETg2M5Ozv75Eaa9qPESp7bZ1uASW:vhEU+wQF/sP23Eaa9SE0uToBCq

Score

10^/10

fakelockbit evasion execution macos persistence

Malware Config

Targets

- Target
  
  14fe0071e76b23673569115042a961136ef057848ad44cf35d9f2ca86bd90d31
- Size
  
  8.8MB
- MD5
  
  06bd47b8ec7e6277dc6c8842d00f7243
- SHA1
  
  23f3b070aad47f72ddf2d148f455cce2266901fd
- SHA256
  
  14fe0071e76b23673569115042a961136ef057848ad44cf35d9f2ca86bd90d31
- SHA512
  
  299febd21383786c542d8fa79dc6d04aba61675c82ab889da9987404d2a78fd036ffab8b88712152b1ec57f06db4960e9391b6fc1c5fed447e48effb8aefbd50
- SSDEEP
  
  49152:m+9o0usEBuQ61RnzrmY+PLXkQF/S/BlFayqYETg2M5Ozv75Eaa9qPESp7bZ1uASW:vhEU+wQF/sP23Eaa9SE0uToBCq
Score

5^/10

evasion execution persistence
- Launch Agent
  Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Launchctl

Persistence

Create or Modify System Process

Launch Agent

Privilege Escalation

Create or Modify System Process

Launch Agent

Defense Evasion

Hide Artifacts

Resource Forking

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionexecutionpersistence