Overview

overview

10

Static

static

1

URLScan

urlscan

1

http://google.com

macos-10.15-amd64

10

Resubmissions

20/02/2025, 14:44

250220-r3686awqhz 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    http://google.com

  • Sample

    250220-r3686awqhz

Score
10/10
meduzadefense_evasiondiscoverymacosstealer

Malware Config

Targets

    • Target

      http://google.com

    Score
    10/10
    meduzadefense_evasiondiscoverystealer

    • Meduza

      Meduza is a crypto wallet and info stealer written in C++.

      stealermeduza

    • Meduza Stealer payload

    • Meduza family

      meduza

    • Path Permission

      Adversaries may modify directory permissions/attributes to evade access control lists (ACLs) and access protected files.

      defense_evasion

    • Gatekeeper Bypass

      Adversaries may modify file attributes and subvert Gatekeeper functionality to evade user prompts and execute untrusted programs. Gatekeeper is a set of technologies that act as layer of Apples security model to ensure only trusted applications are executed on a host.

      defense_evasion

    • File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity. Malware, tools, or other non-native files dropped or created on a system by an adversary (ex: Ingress Tool Transfer) may leave traces to indicate to what was done within a network and how. Removal of these files can occur.

      defense_evasion
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks