Atomic Stealer | Threat Actor Spawns Second Variant of macOS Malware Sold on Telegram
Tags
| cmtmf-attack-pattern: | Masquerading |
| country: | Russia |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Data Applescript - T1059.002 Credentials - T1589.001 Keychain - T1634.001 Keychain - T1555.001 Keychain - T1579 Malvertising - T1583.008 Malware - T1587.001 Malware - T1588.001 Masquerading - T1655 Software - T1592.002 Applescript - T1155 Keychain - T1142 Login Item - T1162 Masquerading - T1036 Masquerading |
Common Information
| Type | Value |
|---|---|
| UUID | 7d598da0-488d-4f39-ad5a-095431792c30 |
| Fingerprint | 2425b891af3f379b |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | May 3, 2023, midnight |
| Added to db | May 3, 2023, 3:47 p.m. |
| Last updated | Nov. 15, 2024, 2:39 p.m. |
| Headline | Atomic Stealer | Threat Actor Spawns Second Variant of macOS Malware Sold on Telegram |
| Title | Atomic Stealer | Threat Actor Spawns Second Variant of macOS Malware Sold on Telegram |
| Detected Hints/Tags/Attributes | 49/4/32 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 234 | ✔ | SentinelOne | https://sentinelone.com/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | box.my |
|
| Details | Domain | 5 | amos-malware.ru |
|
| Details | File | 130 | info.pl |
|
| Details | sha1 | 1 | c70fdf4362eb56032793ab08e6aeb892f1bd4a9b |
|
| Details | sha1 | 1 | 0db22608be1172844c0ebf08d573ea4e7ef37308 |
|
| Details | sha1 | 1 | 24c9f5c90ad325dae02aa52e2b1bac2857ae2faf |
|
| Details | sha1 | 1 | 2681a24f0ec0b1c153cc12d5d861c0c19c8383ea |
|
| Details | sha1 | 1 | 36997111b5e7aa81b430a72df9f54bac2a9695ba |
|
| Details | sha1 | 1 | 385b9cc7d3147f049e7b42e97f242c5060fc9e97 |
|
| Details | sha1 | 1 | 46426409b9e65043b15ce2fcddd61213ff4e5156 |
|
| Details | sha1 | 1 | 48a0a7d4f0ae4b79b4f762857af3bbb02e8ab584 |
|
| Details | sha1 | 1 | 4f25d1a1aa18c8d85d555cd7a8f1cf2cf202af8c |
|
| Details | sha1 | 1 | 58a3bddbc7c45193ecbefa22ad0496b60a29dff2 |
|
| Details | sha1 | 1 | 5d2e995fa5dce271ac5e364d7198842391402728 |
|
| Details | sha1 | 1 | 79007aabf9970e0aff7df52fd1c658b69f950c6f |
|
| Details | sha1 | 1 | 793195d48cce96bb9b4fc1ee5bac03b371db75f7 |
|
| Details | sha1 | 1 | 82f4647e6783b012fc9a1f86108c644fcf491cf6 |
|
| Details | sha1 | 1 | 849cde22d1d188cc290bb527bbd7252ad07099af |
|
| Details | sha1 | 1 | 9058ab6e05cb1f9ce77e4f8c18324a6827fb270d |
|
| Details | sha1 | 1 | 97b19a82a32890d5ddaecac5a294cc3384309ea9 |
|
| Details | sha1 | 1 | 98f98a737a26c9dd1b27c474715976356ea4e18b |
|
| Details | sha1 | 1 | aab3a2897950e85a2b957f77d2f100e61e29061c |
|
| Details | sha1 | 1 | b42243d72765f142953bb26794b148858bff10a8 |
|
| Details | sha1 | 1 | ca05f80fe44174d1089077f4b2303c436653226f |
|
| Details | sha1 | 1 | d5db5a11b9605d54cf66a153b0112b91c950d88f |
|
| Details | sha1 | 1 | d9d46ecfc1100d2b671ad97dc870e879d2634473 |
|
| Details | sha1 | 1 | de465aad6cde9f0ce30fce0157bc18abf5a60d40 |
|
| Details | sha1 | 1 | e114f643805394caece2326fb53e5d3a604a1aa9 |
|
| Details | sha1 | 1 | f28025717f9db8a651f40c8326f477bf9d51a10f |
|
| Details | sha1 | 1 | a02730f734032ed0f3b3705926b657aa4b88d720 |
|
| Details | sha1 | 1 | e951b889aabca7ee5b0ff9d06a057884ed788b70 |
|
| Details | IPv4 | 1 | 37.220.87.16 |