Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2025-02-13...ekoobe

macos-10.15-amd64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-02-13_bb55a3fbf7836693c54b07d95bf7cd9e_adload_evilquest_rekoobe

  • Size

    346KB

  • Sample

    250213-p6hc4aymb1

  • MD5

    bb55a3fbf7836693c54b07d95bf7cd9e

  • SHA1

    2bb56c84ba25a450d94c7d38b216bbae44ec300e

  • SHA256

    89b69b417037bd9a127ad3a22ce7611818ecb6c2a2778a3eb31e2ce022df3cec

  • SHA512

    df539e0f6054496f03f4ab7a9122a89e71a35065e37fd45a8729e19eb4f50d6ca7d26cfb943c42bccb173ccc99d2cb9ea388f462511905f814603211cf6b1cdf

  • SSDEEP

    6144:5SeOQdaZNxtk8cqhSxvHY9RSeOQdaZNxtk8cqhSxvHY9Vgd:5LOQdaDxq8cqavHYXLOQdaDxq8cqavHt

Score
10/10
evilquestdefense_evasionexecutionmacospersistence

Malware Config

Targets

    • Target

      2025-02-13_bb55a3fbf7836693c54b07d95bf7cd9e_adload_evilquest_rekoobe

    • Size

      346KB

    • MD5

      bb55a3fbf7836693c54b07d95bf7cd9e

    • SHA1

      2bb56c84ba25a450d94c7d38b216bbae44ec300e

    • SHA256

      89b69b417037bd9a127ad3a22ce7611818ecb6c2a2778a3eb31e2ce022df3cec

    • SHA512

      df539e0f6054496f03f4ab7a9122a89e71a35065e37fd45a8729e19eb4f50d6ca7d26cfb943c42bccb173ccc99d2cb9ea388f462511905f814603211cf6b1cdf

    • SSDEEP

      6144:5SeOQdaZNxtk8cqhSxvHY9RSeOQdaZNxtk8cqhSxvHY9Vgd:5LOQdaDxq8cqavHYXLOQdaDxq8cqavHt

    Score
    5/10
    defense_evasionexecutionpersistence

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

      persistence

    • Launch Daemon

      Adversaries may create or modify Launch Daemons to execute malicious payloads as part of persistence. Launch Daemons are plist files used to interact with Launchd, the service management framework used by macOS.

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks