Overview

overview

10

Static

static

10

NotLockBit/22

macos-10.15-amd64

4

NotLockBit/lc

macos-10.15-amd64

1

NotLockBit/lckmac

macos-10.15-amd64

1

Resubmissions

28/03/2025, 15:07

250328-shcdqazj14 10

27/03/2025, 11:12

250327-na8dza1sh1 10

Analysis

  • max time kernel
    47s
  • max time network
    265s
  • platform
    macos-10.15_amd64
  • resource
    macos-20241101-en
  • resource tags

    arch:amd64arch:i386image:macos-20241101-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    28/03/2025, 15:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NotLockBit/lc

  • Size

    8.8MB

  • MD5

    06bd47b8ec7e6277dc6c8842d00f7243

  • SHA1

    23f3b070aad47f72ddf2d148f455cce2266901fd

  • SHA256

    14fe0071e76b23673569115042a961136ef057848ad44cf35d9f2ca86bd90d31

  • SHA512

    299febd21383786c542d8fa79dc6d04aba61675c82ab889da9987404d2a78fd036ffab8b88712152b1ec57f06db4960e9391b6fc1c5fed447e48effb8aefbd50

  • SSDEEP

    49152:m+9o0usEBuQ61RnzrmY+PLXkQF/S/BlFayqYETg2M5Ozv75Eaa9qPESp7bZ1uASW:vhEU+wQF/sP23Eaa9SE0uToBCq

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/NotLockBit/lc\""
    1⤵
      PID:478
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/NotLockBit/lc\""
      1⤵
        PID:478
      • /usr/bin/sudo
        sudo /bin/zsh -c /Users/run/NotLockBit/lc
        1⤵
          PID:478
          • /bin/zsh
            /bin/zsh -c /Users/run/NotLockBit/lc
            2⤵
              PID:479
            • /Users/run/NotLockBit/lc
              /Users/run/NotLockBit/lc
              2⤵
                PID:479
            • /usr/libexec/xpcproxy
              xpcproxy com.apple.sysmond
              1⤵
                PID:493
              • /usr/libexec/sysmond
                /usr/libexec/sysmond
                1⤵
                  PID:493

                Network

                MITRE ATT&CK Matrix

                Replay Monitor

                Loading Replay Monitor...

                Downloads