New macOS Backdoor Written in Rust Shows Possible Link with Windows Ransomware Group
Tags
Common Information
| Type | Value |
|---|---|
| UUID | 3418999d-276c-418a-9d6b-6f57e9a9cb42 |
| Fingerprint | 34879c1b2dbeae83 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Feb. 8, 2024, midnight |
| Added to db | Aug. 31, 2024, 9:13 a.m. |
| Last updated | Nov. 12, 2024, 11:51 a.m. |
| Headline | New macOS Backdoor Written in Rust Shows Possible Link with Windows Ransomware Group |
| Title | New macOS Backdoor Written in Rust Shows Possible Link with Windows Ransomware Group |
| Detected Hints/Tags/Attributes | 60/2/70 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 276 | ✔ | Bitdefender Labs | https://www.bitdefender.com/blog/api/rss/labs/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | jobinfo.app.zip |
|
| Details | Domain | 1 | jobinfo.zip |
|
| Details | Domain | 1 | com.id |
|
| Details | Domain | 1 | sarkerrentacars.com |
|
| Details | Domain | 2 | group.com.apple |
|
| Details | Domain | 359 | com.apple |
|
| Details | Domain | 1 | turkishfurniture.blog |
|
| Details | Domain | 1 | linksammosupply.com |
|
| Details | Domain | 1 | trojan.mac.downloader.bj |
|
| Details | Domain | 1 | maconlineoffice.com |
|
| Details | Domain | 1 | serviceicloud.com |
|
| Details | File | 17 | app.zip |
|
| Details | File | 1 | jobinfo.zip |
|
| Details | File | 25 | main.exe |
|
| Details | File | 6 | test.pl |
|
| Details | File | 1 | notestore.sql |
|
| Details | File | 1 | _home.zip |
|
| Details | File | 10 | apple.doc |
|
| Details | File | 1 | downloader.bk |
|
| Details | md5 | 1 | e7cab6f2be47940bf36e279bbec54ec7 |
|
| Details | md5 | 1 | 26d6a7e3507edf9953684d367dcd44bd |
|
| Details | md5 | 1 | 775851f86cbde630808ff6d2cf8cedbf |
|
| Details | md5 | 1 | a91f92bb993fad6ccbd3fd4bb953f963 |
|
| Details | md5 | 1 | abdfe38311b621f54511b2afa434266e |
|
| Details | md5 | 1 | 95a42a8c422c333c60467460479c66ba |
|
| Details | md5 | 1 | 08ae923c3c6b7e94b61402ae8c0c396b |
|
| Details | md5 | 1 | 6dd3a3e4951d34446fe1a5c7cdf39754 |
|
| Details | md5 | 1 | 90a517c3dab8ceccf5f1a4c0f4932b1f |
|
| Details | md5 | 1 | b67bba781e5cf006bd170a0850a9f2d0 |
|
| Details | md5 | 1 | f5774aca722e0624daf67a2da5ec6967 |
|
| Details | md5 | 1 | 52a9d67745f153465fac434546007d3a |
|
| Details | md5 | 1 | 30b27b765878385161ca1ee71726a5c6 |
|
| Details | md5 | 1 | 1dbc26447c1eaa9076e65285c92f7859 |
|
| Details | md5 | 1 | 05a8583f36599b5bc93fa3c349e89434 |
|
| Details | md5 | 1 | 5d0c62da036bbe375cb10659de1929e3 |
|
| Details | md5 | 1 | 68e0facbf541a2c014301346682ef9ca |
|
| Details | md5 | 1 | b2bdd1d32983c35b3b1520d83d89d197 |
|
| Details | md5 | 1 | 5fcc12eaba8185f9d0ddecafae8fd2d1 |
|
| Details | md5 | 1 | 97cd4fc94c59121f903f2081df1c9981 |
|
| Details | md5 | 1 | 28bdd46d8609512f95f1f1b93c79d277 |
|
| Details | md5 | 1 | 3e23308d074d8bd4ffdb5e21e3aa8f22 |
|
| Details | md5 | 1 | 088779125434ad77f846731af2ed6781 |
|
| Details | md5 | 1 | b67f6e534d5cca654813bd9e94a125b9 |
|
| Details | md5 | 1 | cf54cba05efee9e389e090b3fd63f89b |
|
| Details | md5 | 1 | 44fcf7253bcf0102811e50a4810c4e41 |
|
| Details | md5 | 1 | 690a097b0eea384b02e013c1c0410189 |
|
| Details | md5 | 1 | 186be45570f13f94b8de82c98eaa8f4f |
|
| Details | md5 | 1 | 3c780bcfb37a1dfae5b29a9e7784cbf5 |
|
| Details | md5 | 1 | 925239817d59672f61b8332f690c6dd6 |
|
| Details | md5 | 1 | 9c6b7f388abec945120d95d892314ea7 |
|
| Details | md5 | 1 | 85cd1afbc026ffdfe4cd3eec038c3185 |
|
| Details | md5 | 1 | 6aaba581bcef3ac97ea98ece724b9092 |
|
| Details | md5 | 1 | bcbbf7a5f7ccff1932922ae73f6c65b7 |
|
| Details | md5 | 1 | bde0e001229884404529773b68bb3da0 |
|
| Details | md5 | 1 | 795f0c68528519ea292f3eb1bd8c632e |
|
| Details | md5 | 1 | bc394c859fc379900f5648441b33e5fd |
|
| Details | md5 | 1 | 0fe0212fc5dc82bd7b9a8b5d5b338d22 |
|
| Details | md5 | 1 | 835ebf367e769eeaaef78ac5743a47ca |
|
| Details | md5 | 1 | bdd4972e570e069471a4721d76bb5efb |
|
| Details | md5 | 1 | 784d3a3a51ff811b4035ac72a9122ed3 |
|
| Details | md5 | 1 | 3fe70007c81f6938d872f0acdc7703ff |
|
| Details | md5 | 1 | b74a98c673102db8f63e8139041728f5 |
|
| Details | IPv4 | 1 | 193.29.13.167 |
|
| Details | IPv4 | 1 | 88.214.26.22 |
|
| Details | Url | 1 | https://sarkerrentacars.com/zshrc |
|
| Details | Url | 1 | https://turkishfurniture.blog/previewers |
|
| Details | Url | 1 | http://linksammosupply.com/zshrc2 |
|
| Details | Url | 1 | http://linksammosupply.com/visualstudioupdaterls2 |
|
| Details | Url | 1 | http://linksammosupply.com/visualstudioupdater |
|
| Details | Url | 1 | https://serviceicloud.com |