General

  • Target

    2024-12-27_bdb7e88e1366055c4ebc04266151c735_adload_evilquest_rekoobe

  • Size

    177KB

  • Sample

    241227-rrlhbawldv

  • MD5

    bdb7e88e1366055c4ebc04266151c735

  • SHA1

    75808e3846b55597f12f53c08bb851e00e746d16

  • SHA256

    9e4150dc9c69c6cbe1eea313d320f060a794e0829f09ca5e0b9977ce7ce00f3a

  • SHA512

    977bc57676e173a1da51b86cf22ef0c2177585e28be8f190e2dec6526d9acf582ee4ea328e935c9fa9a2e9868efac84fa381deaa09354dc709c8df86122cbdb8

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9xW07:5SeOQdaZNxtk8cqhSxvHY9b

Malware Config

Targets

    • Target

      2024-12-27_bdb7e88e1366055c4ebc04266151c735_adload_evilquest_rekoobe

    • Size

      177KB

    • MD5

      bdb7e88e1366055c4ebc04266151c735

    • SHA1

      75808e3846b55597f12f53c08bb851e00e746d16

    • SHA256

      9e4150dc9c69c6cbe1eea313d320f060a794e0829f09ca5e0b9977ce7ce00f3a

    • SHA512

      977bc57676e173a1da51b86cf22ef0c2177585e28be8f190e2dec6526d9acf582ee4ea328e935c9fa9a2e9868efac84fa381deaa09354dc709c8df86122cbdb8

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9xW07:5SeOQdaZNxtk8cqhSxvHY9b

    • EvilQuest

      EvilQuest family.

    • EvilQuest payload

    • Evilquest family

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

    • Launch Daemon

      Adversaries may create or modify Launch Daemons to execute malicious payloads as part of persistence. Launch Daemons are plist files used to interact with Launchd, the service management framework used by macOS.

MITRE ATT&CK Enterprise v15

Tasks