Overview

overview

10

Static

static

10

31059bd23e...9d1449

macos-10.15-amd64

1

Analysis

  • max time kernel
    39s
  • max time network
    26s
  • platform
    macos-10.15_amd64
  • resource
    macos-20241101-en
  • resource tags

    arch:amd64arch:i386image:macos-20241101-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    07/03/2025, 13:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    31059bd23ea23f951173448224a234779f7d156af2a3e05ba1ed6ca5969d1449

  • Size

    3.0MB

  • MD5

    2cb9465d048f06d296869452df280d07

  • SHA1

    d0931b1e412d38c061e0a0829d50d24e75bd79c2

  • SHA256

    31059bd23ea23f951173448224a234779f7d156af2a3e05ba1ed6ca5969d1449

  • SHA512

    3ab6a6679cd0f145cd4d671336b66f67ae854960c85452e298926b2f01934256639d3ae6edf21087aa74dfaac88720feaf198d1d9e66b5123156c72545638492

  • SSDEEP

    49152:ZguJx3jLj7BBmM5EW6djOp7b9rZpgcMiw04Zp:px3LEfjA9NHwZZp

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/31059bd23ea23f951173448224a234779f7d156af2a3e05ba1ed6ca5969d1449\""
    1⤵
      PID:465
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/31059bd23ea23f951173448224a234779f7d156af2a3e05ba1ed6ca5969d1449\""
      1⤵
        PID:465
      • /usr/bin/sudo
        sudo /bin/zsh -c /Users/run/31059bd23ea23f951173448224a234779f7d156af2a3e05ba1ed6ca5969d1449
        1⤵
          PID:465
          • /bin/zsh
            /bin/zsh -c /Users/run/31059bd23ea23f951173448224a234779f7d156af2a3e05ba1ed6ca5969d1449
            2⤵
              PID:466
            • /Users/run/31059bd23ea23f951173448224a234779f7d156af2a3e05ba1ed6ca5969d1449
              /Users/run/31059bd23ea23f951173448224a234779f7d156af2a3e05ba1ed6ca5969d1449
              2⤵
                PID:466
            • /usr/libexec/xpcproxy
              xpcproxy com.apple.quicklook.satellite.828ACBF9-4A0F-4214-B818-34938B455056 470
              1⤵
                PID:471
              • /System/Library/Frameworks/QuickLook.framework/Versions/A/XPCServices/QuickLookSatellite.xpc/Contents/MacOS/QuickLookSatellite
                /System/Library/Frameworks/QuickLook.framework/Versions/A/XPCServices/QuickLookSatellite.xpc/Contents/MacOS/QuickLookSatellite
                1⤵
                  PID:471
                • /usr/libexec/xpcproxy
                  xpcproxy com.apple.spindump
                  1⤵
                    PID:499
                  • /usr/sbin/spindump
                    /usr/sbin/spindump
                    1⤵
                      PID:499

                    Network

                    MITRE ATT&CK Matrix

                    Replay Monitor

                    Loading Replay Monitor...

                    Downloads

                    • /Users/run/Desktop/encrypted_master_key.txt
                      Filesize

                      693B

                      MD5

                      7c53d4ceac7e4463cf9f481d98872239

                      SHA1

                      5d1cbafd3f458e721f43e78f25eca0b3cac7ffe2

                      SHA256

                      6e2792d7fd17cd9df40fcf3b89bc306abf760d8d36c1f0301df263d5b15fb3dd

                      SHA512

                      8134450d73953b7ef1425bbdb9ae7587763ce70f9db26c769dbe6f0c783b1253c5de12f19ae17a036d277902b8068b8e7465a79ab071330254afab3d3b5fd737

                      Download Submit