Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
main.zip
-
Size
423.5MB
-
Sample
250217-wpts5a1lhz
-
MD5
f499a9200380e2dce4d7b663c4041f62
-
SHA1
589b110a79bb259d8ba44c4f3a7d009aa02ecd3f
-
SHA256
b850cd121b76d1b1610a05fde0c7a11e3169f545617a5a5b0e7c440bd7b30944
-
SHA512
39cf058f287b3086f297c71c40a3551e8edbc2bab14ef1304559c390b73d88a813d947d35bbe0a4cbba5d9caa3c9d408d9577605e3bd16a99093cc8d209fe4aa
-
SSDEEP
6291456:T3z3r4rsNDcYHwwnCYTJBf/yEmlVlBCM8woOBqWGdk7lu4Wq6A32N0b738PEujIo:7zzD7FPrkr8YcyXrX8cCK6H
Malware Config
Extracted
metasploit
172.31.21.72:4000
Targets
-
-
Target
Macos-Malware-Samples-main/0052d11ec131650f366d1aaaf4f33679ea17888f183fde160521bf83260d9d0b
-
Size
16KB
-
MD5
11927b0465bf3ca8d74bcf40193dddbf
-
SHA1
d3b60acf69443434262a13290edb79d16c8baeb1
-
SHA256
0052d11ec131650f366d1aaaf4f33679ea17888f183fde160521bf83260d9d0b
-
SHA512
6a5f01f0b5e6b6821e76d325f392d6d5dd34d5b629edf118ccd15e873f222cab879c772fc14f0847d9ffbb2dfa213f40b26abbeec4ad251223d3712bf1c5fd38
-
SSDEEP
192:T8ZBvMu4JOSY9bo6CAV3kXzPt1JAZ6oZiRcXr0UKghQSEO5DqzVb9iStWzfDeOSo:T8LN4/Yh/CJLAcEiRcXgqquUJKfDufQ
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
-
-
Target
Macos-Malware-Samples-main/00dba8d8d361fae719a6b19e95be78674644466d7956255166d5200df4e6cad8
-
Size
48KB
-
MD5
4f14f61b4080df48f0595f007d6b4ce2
-
SHA1
851871658beb0a9b5a031fd884ccc62732ed4b86
-
SHA256
00dba8d8d361fae719a6b19e95be78674644466d7956255166d5200df4e6cad8
-
SHA512
748184b16144fe43ec94815d9be30053dff9b5eb0fdd132755e1eb3b331c22fce4032c34008fa2687c51d2992bf1608f604b68ddf937e10ff21ba9f60ea731d2
-
SSDEEP
1536:bFF1Bn3+enFkTV2Py+bGd6kidOdW55XC:D1Bn3+cFkTV6xbmqd7C
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
File Permission
Adversaries may modify file permissions/attributes to evade access control lists (ACLs) and access protected files.
-
-
-
Target
Macos-Malware-Samples-main/01eb2769eae55ea11753cc9fa9d8d735c441a80211acd4abda99d51af8858d9a
-
Size
14.6MB
-
MD5
2fe1489f83f67257609f231df8d66269
-
SHA1
454dccd4c258fe40a7488ab07c3a2b349545c310
-
SHA256
01eb2769eae55ea11753cc9fa9d8d735c441a80211acd4abda99d51af8858d9a
-
SHA512
94a59c13496225cfedbace5962174f1a1a74eddbdbb048b9a637da5384e7f7699108b985f9b53b42435e44e939c4c42f06b55748bd17fe387121891998395dc1
-
SSDEEP
98304:41I9psDlsAI+j9isEx77LPtjyv4h0iiHoTsFoXf3IH9g/w3m5mhadcWoR+fRAOtd:7MBEkql0yUJ3GtVRgTRty
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/0333434276741185b03d6a1ec4c97a49a34d73bf9138d5d039bd5cb96b8a248d
-
Size
48KB
-
MD5
f1abdc7426dab256d30da578de73cb9d
-
SHA1
3219d1b92dada589839cabc5e546561f51ddfe82
-
SHA256
0333434276741185b03d6a1ec4c97a49a34d73bf9138d5d039bd5cb96b8a248d
-
SHA512
78b001ec08203b65f38cbc5fa05774b8dfd972f3f8096f5f31132d78906c73d39d59515d51cec0873ca011da68096ae650f6be566eaf3403b2d1ab7cbfa48f53
-
SSDEEP
1536:cwBxH+LbSTkGJskNYKpfAtcMi7LqK24QIAtAmL:VZ+LbLEjhMcMi7uK21Ttl
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
File Permission
Adversaries may modify file permissions/attributes to evade access control lists (ACLs) and access protected files.
-
-
-
Target
Macos-Malware-Samples-main/04741b492b2b4f692e7695bc6b88231b6df7fbe952057b6bedd9c8f2b5a2394d
-
Size
70KB
-
MD5
cdb279e28e2a0bef6e86599947021b05
-
SHA1
5fef889109bb3851cc73dc324c59c6ca088c9094
-
SHA256
04741b492b2b4f692e7695bc6b88231b6df7fbe952057b6bedd9c8f2b5a2394d
-
SHA512
de81c5e6b89ad19a455866fed2d9046f67809638a7dade5296b18fbd73cc52b6ece2039d0746b888ea11513c20d285be7fe7e01592b077f6c3d44d4ca9221797
-
SSDEEP
768:DVYfyuvoZrb/rj+HhkjNIWU+KNSMm4y3JP1woU1B66enkCfM+5MkQfUkA2h80Aab:cyuMIQxU+gm4y3JdY1RhsK
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/07afda7e002fbfb8bf8325ff4d2e48b9a0bce8a7090e58b0da72ac302ddb8b08
-
Size
34KB
-
MD5
e49a6ed82dd197bcd90f1aaafee8ba13
-
SHA1
c2da5ea2a53c6ff2815d447147ef71c592f346ca
-
SHA256
07afda7e002fbfb8bf8325ff4d2e48b9a0bce8a7090e58b0da72ac302ddb8b08
-
SHA512
c2b53979b536c9aea77774b5181fad637352fccf91595c3d91e58c55847af094cc0d605bbfa4c4885620f417b6fea301a910cab23e0eaca7a4dd5b178253c4ff
-
SSDEEP
384:Z8LS3Nb7UK8eV+3/goeylnYAlRxXf6QhnNxDzszy46OLrkr+Q8urySr6OpmKDr3I:GLS3R7UKpV+nxRF6O58amgfab8M
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
-
-
Target
Macos-Malware-Samples-main/07ba2f8c2575e1abf2f53ca10e4d0c9fedfba47f20eb99f67d0e4e2ad01dd006
-
Size
20KB
-
MD5
5b98da7c610614a0daadd5b137f2038b
-
SHA1
244aa58b53218f7ffe50e8abf84dde48eb110551
-
SHA256
07ba2f8c2575e1abf2f53ca10e4d0c9fedfba47f20eb99f67d0e4e2ad01dd006
-
SHA512
1771e1d4aa413e72f45d95e1b1b528c6ea47f0d6f01c2a12d5e8b464c253840617b46d12083bd7eca449229956036d1be29dfa8f9182575972220a96934eeb30
-
SSDEEP
384:RM4140hctqWfrS38dz/oxrkRZv3ywjpPmJIMkDpZUEG1+QS1:+yazDY8dzgmR7KkJx
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
-
-
Target
Macos-Malware-Samples-main/08cf10e3df9f9aa05636875b6c52b0315b0d701d19049394cc1dad0ee24b1694
-
Size
34KB
-
MD5
68046c488709412bdbe275dc9e658a54
-
SHA1
8c2993bd0625880793ff5c03847c3415e7032b5b
-
SHA256
08cf10e3df9f9aa05636875b6c52b0315b0d701d19049394cc1dad0ee24b1694
-
SHA512
6b4472d844a2a31a881a830a9436abc3ffa2e836db7fd70bafa33d79f9cf29f8dec153eb0fe14864aab7e74855f607e9fde6dfc0784e98077e6288141e29ac83
-
SSDEEP
384:CMCyAH1ICtuL//Hk/eUlp4R2HguYZ5tvr+Q8qr3vFrh6rHskrNab8eri:DObtm3k/HK8AuYZfp8uv75mab8z
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/0941ef4c37d983720934aae64b03511d5707f7e77d4ed7f9d31cfd8e8ecba061
-
Size
48KB
-
MD5
ecd1f29667a6087e752fe16b1b776494
-
SHA1
e85686e7f9038228efc3fc55c4d39edf5f82506a
-
SHA256
0941ef4c37d983720934aae64b03511d5707f7e77d4ed7f9d31cfd8e8ecba061
-
SHA512
1e6bb4daf0dc8962fd9bf8775bbbba75c802e0a90bd0b6b8f4f73fb410e2389d07f78ede3ffaeaca9a31ff5f4a1653ce18168c4d572c4ec55e03dda51ea315c7
-
SSDEEP
768:PtnLm/quXoMJWz1tO1JgcJyjf7KcflZyU1v7oVy89hrO8r3mJc:PPMc1tO1JBJyjGcfFky8rmJ
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
File Permission
Adversaries may modify file permissions/attributes to evade access control lists (ACLs) and access protected files.
-
-
-
Target
Macos-Malware-Samples-main/09d8f11a0c75a569cdeda1a6664c1d1698eb0f25e278545f0f39cc25200ac417
-
Size
70KB
-
MD5
d12d42cbf09dd606b86a77064296e3f9
-
SHA1
d2d690ef7a0ea5ecd495c8cbd26189f04301fdc2
-
SHA256
09d8f11a0c75a569cdeda1a6664c1d1698eb0f25e278545f0f39cc25200ac417
-
SHA512
ec2c66a5cb0951b1fdb4be00a529f518c6f72cc2632525aa6ba2d833cf6f337ec4e7a3d7e62d6e8bfb7bf7e5e1e0a614c34b53c2fb957b1da2bc29461d2b8a08
-
SSDEEP
768:kVnfyuvoZ+/rj+HhkjNIWU+KNSsZ0d4Wn+/uB66enkCffr5MkQfzktps9N8/m9hj:yyuFIQxU+Qu4WnEYNGSK
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/0adb733069b3d16e95049eedab4af182ab6c79dfe3b66caeddf95974ed623edb
-
Size
209KB
-
MD5
61f55eb31a073bd3779edaa3bb33ed97
-
SHA1
b42c5e5c8b4f516cea9de7617342169a2fd15731
-
SHA256
0adb733069b3d16e95049eedab4af182ab6c79dfe3b66caeddf95974ed623edb
-
SHA512
964a9de219ce7271c101cf5a05cbe821313d88cd5d6a51e97641166176000e24f47e2d843f70e87b78d2bef050b8ea75b2aef247ba523fea0c03b080b4e6cf09
-
SSDEEP
3072:/dSmRu0A/5B3NKkbrhw7BH6ekuiiuyNfg2FBoqZEJh6eW1SZZdv5wq2qqQGqdLGl:8TBcbE6yOq7w5sqmp/T10
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/0afa585ed6cbb4ac3bc971337c872a45f003c1e3344a88d5180332830e715108
-
Size
18.0MB
-
MD5
c0e0004cf0421afc36eab2eb38344fac
-
SHA1
c72355a4b3f3746c24a90540453d610ac14a342a
-
SHA256
0afa585ed6cbb4ac3bc971337c872a45f003c1e3344a88d5180332830e715108
-
SHA512
0ea1416fd0f4ad7a6dd185b45fadf21421e3712f4488d7daf7997b8bc753e6bc2e79da9bebc84bc02158e6cf47f326c9582d91393794fc16fab68373cdbdd97b
-
SSDEEP
98304:HA3I7Q9qc4RfaESAufdc9grQje7ptScC9W857zPmNc+XAGBoZxllWrRfcdjV:HAY76CufdHQS7pYcC9W8v+LorllWr2d
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/0c7187697236d27ecab6641ea13d863113ab12229bee0060e03ff06b9d0f989b
-
Size
130KB
-
MD5
6089eca7778ce95cc4eae88542a975cd
-
SHA1
f1c5608cf0d379c3d0c5726ec4687fe0c622abaa
-
SHA256
0c7187697236d27ecab6641ea13d863113ab12229bee0060e03ff06b9d0f989b
-
SHA512
078d0ce18883e5f06293d3f2bcd3540f8afaea34fa2d7781454f0d7cb7be7438b0a23bf5198a9e2e778e637af2cb7fb4612331091e561801728de468b0f9be6a
-
SSDEEP
1536:J+ijTis5nhodlqLNBRXpC9sO46vgg865ehGUNdOFtIAYTrVZeV4:J+Ns5nqlqL5jH6665/U7XVZeV4
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/0ca84388595085383469eef8f4e226a7323922a0482f507fdffac5909e5953fb
-
Size
48KB
-
MD5
459d79d4f2199bdcb5a37f4701366a43
-
SHA1
1a3f14be4337347a85b179a1075c2c0f540b9f56
-
SHA256
0ca84388595085383469eef8f4e226a7323922a0482f507fdffac5909e5953fb
-
SHA512
6163b085ad809e27269c6a5dffc30111bd93d5e043788ca055df3c5a98515fb5f398f60003033357288e21ad903ab34020bd43a9b4d0c8740a9f5dbc21e88d89
-
SSDEEP
1536:S2ruNS0YoPzzplpK/cCa0wevAMLCo+wl:NuNS0YC2/cS5dLCcl
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
File Permission
Adversaries may modify file permissions/attributes to evade access control lists (ACLs) and access protected files.
-
-
-
Target
Macos-Malware-Samples-main/0ce3e6c13d79452560a88c667063a48392e9fc8a54b90afab3f8f9aa02997f4e
-
Size
509KB
-
MD5
a8c4afdc10568eb7c91f6c6020ee4b3f
-
SHA1
d43b3a0f6b1d9006fd9e303de3272d88ecd54896
-
SHA256
0ce3e6c13d79452560a88c667063a48392e9fc8a54b90afab3f8f9aa02997f4e
-
SHA512
0a758bb77d4bda9864e87d91841ccd205262e37fd80f4cc9bb695e0a73140baa39b9e7bf78c80abec6cccb8f0bfe1fd4d7d7af3d79f2faaf64be6a7726601a32
-
SSDEEP
12288:HIJRoWq180jm38YAKmpwOFNOvEVQOIu185rCW+wnfBoaD/:goKB8YAKmxFIiQu185rCW+wnf
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/0d64705a29367ad7044ac351367a0d6791acead7a533c2c3e1e333bf48c42693
-
Size
6.2MB
-
MD5
6f0ff5c0046da3c4fef9135d006b3ea6
-
SHA1
40719a770a7f5ab6684bd3e3e86fd43ad4877a46
-
SHA256
0d64705a29367ad7044ac351367a0d6791acead7a533c2c3e1e333bf48c42693
-
SHA512
51f414ab165b644305c0371b8c9ece1f2da6e825398ee3f9707b8c64470dd9d7e096c978134441152b549c9747f1f9f92710d7889e490ae0c1774475e2f1973c
-
SSDEEP
98304:Z1FcP/BRBqi2qQ0sKvqWYeJlkjdovos3Qm4BNxKbxB+:aP/T3Qm+
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/0dfba51458d99d4ff57a365c0e57816d2b55b2ed8f825bfae69441f5df178f1a
-
Size
34KB
-
MD5
986eb1309aa0056924f915f0025f6802
-
SHA1
4037e8fb0e4d5d6b7a8cb6230f9d752e7f861dd8
-
SHA256
0dfba51458d99d4ff57a365c0e57816d2b55b2ed8f825bfae69441f5df178f1a
-
SHA512
dfefeb4bdcbd96e06b29ee88d5109db94610177155959412d6af07c15dc900c557d04d80c3b7c5c75217987aa38aec4cbd309b6cdebd9df55c9ed07b5c2dbdbb
-
SSDEEP
768:epGLb06vR2EQpq2QitZ3F8WPbZKix9ab8EN:2GLbPR2Rpq63FXhx9K
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
-
-
Target
Macos-Malware-Samples-main/0e945fbc18090696c342731d1ddb5d6e886f83b91e698017964f21a27ebb3f2a
-
Size
34KB
-
MD5
e5c50dcecc0d91a37a7fdb4d05206678
-
SHA1
afc4e2271b2e6dc131fd9731769834d2ccacb149
-
SHA256
0e945fbc18090696c342731d1ddb5d6e886f83b91e698017964f21a27ebb3f2a
-
SHA512
d490555365ac53060416cbc3b64fb38eae0f6f16339c55fc2b2a1c332b672e0b45d911701c6c1d24b908fb39ea843da87e2df4e5ea8a81557bde0cc281504681
-
SSDEEP
384:CMCyAH1ICtuL//Hk/eUlpEf0cotU2HguYZ5tvr+Q8qr3vFrh6rHskrNab8eri:DObtm3k/HipotXAuYZfp8uv75mab8z
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
-
-
Target
Macos-Malware-Samples-main/0ee6c8fd43c03e8dc7ea081dfa428f22209ed658f4ae358b867de02030cfc69b
-
Size
48KB
-
MD5
c7049a42302fa05ac17127b788fe5da5
-
SHA1
61852110485fa2234e54ffae923e44c9722aeaaf
-
SHA256
0ee6c8fd43c03e8dc7ea081dfa428f22209ed658f4ae358b867de02030cfc69b
-
SHA512
e12c5bd638f8116893a472513ba07bd8b01065622c8ecce8305b0044d2079a385a3a4a290ef360564b77e49a829f5aa4582486c4030ad874b2abde829ddbe513
-
SSDEEP
24:xKA/8C28ekM6S98SczqaycObLmJLyxjFqUDhMK3iWAbO7fec48u6f4xu6Dj6sR+r:xlOdTh3mtyx8UFM5HbO7z4x+H6Dj6s6
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
Queries the hardware information (I/O Kit registry).
An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture.
-
-
-
Target
Macos-Malware-Samples-main/11ddbb40f941cb946b7865e3e8b67dd97fe401f26f441e943fc916970c53d096
-
Size
794KB
-
MD5
a61b7219a266d71d2526885e53fdef03
-
SHA1
a19807571acbca1898d72ae1a893a385351b0b80
-
SHA256
11ddbb40f941cb946b7865e3e8b67dd97fe401f26f441e943fc916970c53d096
-
SHA512
9455cc98506348923fa67444d0131970d88f294b94b9290a223727e7e632e053ae35152f7dd85e95b14da59d9aeb560e1150004e5a5f38793c92d69988ededf3
-
SSDEEP
12288:Ikpo5drTv7z7tztzQZ43zwG0okb23HXRTcnfLIsxX2qd35G40RMoxV:kdrTDz7nQZG0bokbeHBT6MsxGiJG40RP
Score7/10-
Queries the macOS version information.
An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture.
-
-
-
Target
Macos-Malware-Samples-main/1273c31fdcb2d76f3ae90d58f71bdee9c9c5be3f4d0097620419d7f030c2eb29
-
Size
20KB
-
MD5
de39833ee011d2f7ca76bfa4664541f5
-
SHA1
ef46506c5ef941945d7da756b35db0f79253a9cd
-
SHA256
1273c31fdcb2d76f3ae90d58f71bdee9c9c5be3f4d0097620419d7f030c2eb29
-
SHA512
0d4efe8694e2696bf8f6709f74e31c12eea2f29121ea7f0d46664282ec21a99e08b44dd9d2397f88329241fe70cf05e60f55c9ec9131f8bf463fd6f48fdef732
-
SSDEEP
384:/8bHDa47hBPXH5sk0RvAEQk3+CHKEWpzcPIx:kXacXH5sBJQqSzEIx
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
-
-
Target
Macos-Malware-Samples-main/12802610a8b728bb3944fdca9163af2e290d5b64580aca2313de8ee6f7684200
-
Size
71KB
-
MD5
0282145ff06a150ae0bafabb76fca017
-
SHA1
cdcccdb9b40ec7b174b94dde1f1108aa43ee33a8
-
SHA256
12802610a8b728bb3944fdca9163af2e290d5b64580aca2313de8ee6f7684200
-
SHA512
a00125aef3292309549f568674d64b00dcb4646e8fd01af7c15209c0344a4ec4e91dcd610e26cb3fa38e02f9a5699d09bb6711393a07e93f7725d02f8273d7b7
-
SSDEEP
384:j+3lgtToX5HkKuiKbTflBeJKCti+XfY0U43/r+Q8brex+rVlFraXrrNab8erl:j+D5Tunb7lBeJVi+XfYd4p8J2ab8
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/130a6142c7768de9df4930b3a374c2352c356d93159c6b69d706aa7bace2020a
-
Size
34KB
-
MD5
609eab21d6dba3c1eab535e6255ad0b0
-
SHA1
ac4a4822f1371c82a1de47cc4311850c7e475b74
-
SHA256
130a6142c7768de9df4930b3a374c2352c356d93159c6b69d706aa7bace2020a
-
SHA512
c8e50f418de62a3c4c7b46689a5793697fc140bd5a871989466cec97ce04dc49daa776d9c6c19dda6be32eae9b03bc6afdc7ad22f7fb6b74b337edf34a8a98f0
-
SSDEEP
384:ysE6KsxXZhHDOaxEK7HK1hrPkuhhoPeBQopj0XEl8lr+Q8ury6rQ7IDr3uahrNa3:TtKCXdQ8u7omaij0S8L8lCfab8
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
-
-
Target
Macos-Malware-Samples-main/1366cf5a7863e813102e646a94e329eeb1532ff3f66789f035bab3d5f7e86dc4
-
Size
34KB
-
MD5
9f79cfacffa9d221ea64069a63f130e6
-
SHA1
25d5ec113ad0706a6b6a38df3c85e5b7dd64c6e9
-
SHA256
1366cf5a7863e813102e646a94e329eeb1532ff3f66789f035bab3d5f7e86dc4
-
SHA512
054545aeba847734b07563717b4a23f696e40285cac6f1d0c75b319bd0f91bcb16c9e9076601461016e2f2a6e2a1d49a27e9afe92efca745b19f276627ca19cf
-
SSDEEP
384:CMCyAH1ICtuL//Hk/eUlp4TotU2HguYZ5tvr+Q8qr3vFrh6rHskrNab8eri:DObtm3k/HKTotXAuYZfp8uv75mab8z
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/1442488066ece4b88832dd96945212d220b2fa5306b52790bafe059f46884d52
-
Size
34KB
-
MD5
e1f0b7c30cd044ca98c6f24caeff869f
-
SHA1
1a1a35824946497e09b04e0ef4ab146e7ce3daea
-
SHA256
1442488066ece4b88832dd96945212d220b2fa5306b52790bafe059f46884d52
-
SHA512
3c4a31060f556f57e14e3f6108eaa1fd7167e33e214f52ece38cc72affa262be2f99986c0b95a70c4034d319c30a15a112db1cea92366649a45a22a1fd0de276
-
SSDEEP
384:CMCyAH1ICtuL//Hk/eUlpEf0cotU2HguYZ5xVAvr+Q8qr3vFrh6rHskrNab8eri:DObtm3k/HipotXAuYZ3mp8uv75mab8z
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
-
-
Target
Macos-Malware-Samples-main/156bbc4d4c973201598a3a2d73647da371a2b202e5340c28dda74f831032440c
-
Size
20KB
-
MD5
2bee8bc86b0d108ac6daa47617fec469
-
SHA1
4f57a278edd4bb778b3c58c91fc60c45fc49edd8
-
SHA256
156bbc4d4c973201598a3a2d73647da371a2b202e5340c28dda74f831032440c
-
SHA512
5c168664cecd24ad4568ab2f69a01861119e69a8a559dc8f43d28c7bff03af0b0be571b55f1a32291e0aa3d1d91ae253e7c0b9a00d95217d21e34bcf097adf41
-
SSDEEP
384:k8JCGcO+Sk2A0CBkZpFk4K+oyHqgTuCpRvDm89h9VXxZ4:dUbSVc2u4KR85uiC8DXD4
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
-
-
Target
Macos-Malware-Samples-main/156e3d2ef4b0afa34f61cb01989fae2ca1c0b98cb122d166b163038c3a11b661
-
Size
16KB
-
MD5
8d23f9c201b3ea7b5364d130d628f152
-
SHA1
56890846c98e2ca800089f3590a85032008e736e
-
SHA256
156e3d2ef4b0afa34f61cb01989fae2ca1c0b98cb122d166b163038c3a11b661
-
SHA512
c4948dddd1eea6eab006fa3821d9011cbedac54b836fd30093329bfa14e84c6d3afb7a1b08cc82d83496bc46ad909bb542a8db2820672e63e9518bf748e77c9e
-
SSDEEP
192:1cJbq4vuqoAhXhr4JnXMbTLV7Nd0hg+uUVzCM28JTb3wznfHFPzdkbEhEEeYFYS7:1cQ4vuxo4kvdwLdYaEzPNzd2EecYgjj
Score7/10-
Exfiltration Over Alternative Protocol
Adversaries may steal data by exfiltrating it over an un-encrypted network protocol other than that of the existing command and control channel.
-
-
-
Target
Macos-Malware-Samples-main/15b7ff9ea653d07bbe7cfbde8169bf6850764820ca64edca27d68a345340d4f3
-
Size
775KB
-
MD5
fb36cd9fecc2491fd693744aa0c546b0
-
SHA1
6305936e158aaa33fbbb1f9a5a4aa2522061224d
-
SHA256
15b7ff9ea653d07bbe7cfbde8169bf6850764820ca64edca27d68a345340d4f3
-
SHA512
682a9213f9de2729c0cd5aef57ed1fc65b8cb65b4205d235758af488285ed8377c14743f1e0ad314fc970e267a8b8dfc81ec64b7d193e140ce7a25c38ac166fc
-
SSDEEP
12288:8eVyQKqI6YJH4zFwC1khzgBr+FCtQDdRl08NUgqEYFoerEvR7:8e44YJH4zFwC2hzgBSFCmDdHx2FZYvl
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/15c2cf26630364c65e9f3c7f9e0405a963120678e1b6f8cb1322d40effc98e38
-
Size
34KB
-
MD5
c468f19642f73e134904fe9948869099
-
SHA1
ef18fb1e9468a964194ae996760bc363e19480d4
-
SHA256
15c2cf26630364c65e9f3c7f9e0405a963120678e1b6f8cb1322d40effc98e38
-
SHA512
9ea2b32cf1ebddfbc72f0d171945ace67340d5b60b982ba507eb7b6c63c7f441aa126b4b569b91f22e289f89c73aa978bf24c5cb31738da9927237fa04d691ab
-
SSDEEP
384:CMCyAH1ICtuL//Hk/eUlp4G2HguYZ5tvr+Q8qr3vFrh6rHskrNab8eri:DObtm3k/HKVAuYZfp8uv75mab8z
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/15d5b366c14477ecaf75c1ab7dfd4d28874da51a9eea538963e785adebbf2f25
-
Size
70KB
-
MD5
79f3ef4eb9974160c31efff778e8aed0
-
SHA1
b818d79ca7d86c2f3f1ed3551e6068cd22159ecf
-
SHA256
15d5b366c14477ecaf75c1ab7dfd4d28874da51a9eea538963e785adebbf2f25
-
SHA512
72eacae24036c94046564062f4761ce57ca7cfbe2ea6e372db5fea432d447021eeb7593d1e2dad67fd0fa79b4f64afeb6cfb545913fdaa169f12a35a8913aafd
-
SSDEEP
768:kVofyuvoZ+/rj+HhkjNIWU+KNSsZ04LDn+/uB66enkCffr5MkQfzktgFo8/m9Jy1:7yuFIQxU+QXLDnFFoGvK
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/15e2e13655525866899abf4f800b700e3aa422a5d0dcb876f00fad22607ca34f
-
Size
220KB
-
MD5
4395ce8d338558831c06e51799b7a404
-
SHA1
17d6554d61bb4ad0f16aaff7ecea8d743afeccf9
-
SHA256
15e2e13655525866899abf4f800b700e3aa422a5d0dcb876f00fad22607ca34f
-
SHA512
49a26335218903a8c7b85dc5b67882ac32e6c9cc8cf9eb1da9918c30e97b8e0b32bcf59486aeb487f07679c1465e827f2981ae3e5a98ea369a76ed933b725f82
-
SSDEEP
3072:EhycL1g85BesJ5JcqMcid8LJv5vmmpHi:E/eiczMvYmpH
Score1/10 -
-
-
Target
Macos-Malware-Samples-main/15e9df4901e5d1bbe1f48bed5e1fb885809a9d733ec060fba4e0a7ed9bf5704d
-
Size
202KB
-
MD5
d52487df956b3401b8050df5fe18c8bb
-
SHA1
b9722284f45b5a9134dd7fa5e93ac682402d4191
-
SHA256
15e9df4901e5d1bbe1f48bed5e1fb885809a9d733ec060fba4e0a7ed9bf5704d
-
SHA512
cc46e4608e6debb369fd944506910d002d6b09b59b91b4e7f1a6614e8bb47bd7da9537dbc437de99cf67f1219921334e7ef567b2500949ea67779f97c60ae0be
-
SSDEEP
6144:MW5TK4zVNO1hNhNFWefziHTaZ9a7QMr9:TK4zVNslNFM2ZPMr
Score1/10 -
MITRE ATT&CK Enterprise v15
Defense Evasion
File and Directory Permissions Modification
1Linux and Mac File and Directory Permissions Modification
1Hide Artifacts
1Resource Forking
1