Analysis

  • max time kernel
    17s
  • max time network
    104s
  • platform
    macos-10.15_amd64
  • resource
    macos-20241106-en
  • resource tags

    arch:amd64arch:i386image:macos-20241106-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    28/03/2025, 15:47

General

  • Target

    Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib

  • Size

    440KB

  • MD5

    44651b3ae8ec3d2421943b4db38de3cd

  • SHA1

    a95bae8a2b87f61b1c3cc41fc417866f1adea718

  • SHA256

    a514e80583366bd464c7bdf85f71b73ad9d38d6d6f67d490caf805f49b34b209

  • SHA512

    db9c3677b3550edd6f8d67544a85553aadd73c66bdb9ef9536070c6bd673c0225ca28e98b2612aaadc561cb60a299affd2adb1081751504bb659888291f4c1a9

  • SSDEEP

    6144:RhhLmqVxtHlBIzTlNvPEutiMFZFZZK8UeXYLS2LpzibZ4919XJw3SCD++h:Rh/dHl8tPF68UoDYf+3j

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib\""
    1⤵
      PID:491
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib\""
      1⤵
        PID:491
      • /usr/bin/sudo
        sudo /bin/zsh -c "/Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib"
        1⤵
          PID:491
          • /bin/zsh
            /bin/zsh -c "/Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib"
            2⤵
              PID:496
            • /Users/run/Swinsian
              /Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib
              2⤵
                PID:496

            Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads