Overview

overview

4

Static

static

1

Yaagl HSR..../Yaagl

macos-10.15-amd64

1

Yaagl HSR....erized

ubuntu-18.04-amd64

3

Yaagl HSR....erized

debian-9-armhf

3

Yaagl HSR....erized

debian-9-mips

3

Yaagl HSR....erized

debian-9-mipsel

3

Yaagl HSR....ces.js

windows10-2004-x64

3

Yaagl HSR....ces.js

windows11-21h2-x64

3

Yaagl HSR....7z/7zz

macos-10.15-amd64

4

Yaagl HSR....aria2c

macos-10.15-amd64

4

Yaagl HSR....patchz

macos-10.15-amd64

4

Yaagl HSR....delta3

macos-10.15-amd64

4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Yaagl.HSR.app.tar.gz

  • Size

    4.9MB

  • Sample

    250508-jw4wfszsfw

  • MD5

    de68e1d7a37b16f71e10b6886ae993bb

  • SHA1

    f56eb060acce823128a3d69cd3e720052c00fba3

  • SHA256

    a3da426b13074c25b8e6ba40b5365dc3ed312920a01000882e5009abeb5bca24

  • SHA512

    97e40168d87765c21a2b533ded3ba5f84e2b1a1a2233a8d6e4f075860913caebe9e28bc07edc35ab18c11d52100e5e117b6b9b5888c7d9bd1cec877fc7782b4c

  • SSDEEP

    98304:nScslE8LglRjxNJ4TrqZQ54nAL29Jswz4gw5V92N6dRkyjMxhUjOpD5FQ:nScs5ElR1r4T2ZQ54noeJtz4rV8N69ii

Score
4/10
defense_evasiondiscoveryexecutionlinuxmacos

Malware Config

Targets

    • Target

      Yaagl HSR.app/Contents/MacOS/Yaagl

    • Size

      2.0MB

    • MD5

      a528b5001d61c932d8e812dc4b515aec

    • SHA1

      52a3dd23ab14abcf3219b78ee4a64064b31fafa2

    • SHA256

      2287b77098564d292f65919ac3740f9dc7ad4c5dafb026a845348909a90a959c

    • SHA512

      b03a7f7f2d622130a39ab031d16c4d4406be2544988b8f33a9bb57442507341982c2ee31acc88a95bc2353d54ba64f8f73f60012b08e656a1cad4d083040eb40

    • SSDEEP

      24576:/gez+E9SrfdVpDhyGtsJ1NphWiqpv4g8bf3Tl51YnWL/f+ZxBSWlzhB3JSycxr3V:oez9c/ophWpPWLHuYU73JSR

    Score
    1/10
    behavioral1

    • Target

      Yaagl HSR.app/Contents/MacOS/parameterized

    • Size

      385B

    • MD5

      9969f7095761854b4db8b2c461cc8fe6

    • SHA1

      451282dfa23c25a680e71806e32bdc79f2aa686b

    • SHA256

      505583905a61e5cddd8d4f99e10d68854d0044082bbd430b96b766f620afcb07

    • SHA512

      372c34cad7214c7ecd1715eb33603bfb56cd868891c9c7662749af502c058f123d1f2f173e5bae4e118d12c843f00607a5e360a7b8848b02d951d643688d6edf

    Score
    3/10
    discovery
    behavioral2behavioral3behavioral4behavioral5

    • Target

      Yaagl HSR.app/Contents/Resources/resources.neu

    • Size

      963KB

    • MD5

      c5ea30af7689927d1d0826add3478958

    • SHA1

      9382691381c5ea205937ac18036fc13daf154ab4

    • SHA256

      5fd1229a095da638484592b29400bd9f00865b7f0e57ecc6742dad156058216f

    • SHA512

      160399b8a62266acdbc3c2002ee20276de4ad912d3ad2630c53de4e887e4043a82d5dcb7ef5c98804dee9c5071d8ec015fa47ce4697dc6ac62b46f2cd3c4bb58

    • SSDEEP

      24576:a3TjHklOdN357i4By4B72WyIDOoMLhZS8vrfVH3lnmv8+Ns/YD7Gjagho6QNRl:a3TjHklOdNRTy4B72WyIDOoMLhZS8vre

    Score
    3/10
    execution
    behavioral6behavioral7

    • Target

      Yaagl HSR.app/Contents/Resources/sidecar/7z/7zz

    • Size

      5.0MB

    • MD5

      a9c17a27dea8ae6d13e452c3f8d27aeb

    • SHA1

      027d4c0fb3802cb99a056067649b9aa923f21bb3

    • SHA256

      10bba361f87be5882e362df8f283646fb5fff1a7f63246149a5809be286897f5

    • SHA512

      20b49005e2cdeb0e01a61934e4dbf8d23255597ae3f4c9b0daa0c8dd6a456affed8b3e5e6ff695a8d3011af7f3b42e65af4231a97821f452fd63d29f8a72fffd

    • SSDEEP

      98304:gtfGlTtbFK3FEiKI3q+Ez0TKGvGLRWa1gSYL/xz+trKIcVwmlpT23jrb2YJgsG:gtfco2z0TKUUHws

    Score
    4/10
    defense_evasion
    behavioral8

    • Target

      Yaagl HSR.app/Contents/Resources/sidecar/aria2/aria2c

    • Size

      1.6MB

    • MD5

      c63381043fe790c0778dee788a377482

    • SHA1

      1268da8bd225b0fe8bdd13e15bcf075be2ab9701

    • SHA256

      9bb4ff0638b1fc198d5ee2e6badb431febdef62295346769911e5ff8341d5ec4

    • SHA512

      ba85a9508af351b5b2a488acc2711e120f59a865faab8d4789139c3d3d77bf309a4b17bea0727fd51621bd4a4c3d3b6087ea8f72aab96b2ab0809ff9dd008f02

    • SSDEEP

      49152:HH/f+s85jLvpjTB1/zn4MqymBvO7VxlMGuUELPv+Mpv:HH/mf5jLvLt4JBvO7VxlMGuUmP

    Score
    4/10
    defense_evasion
    behavioral9

    • Target

      Yaagl HSR.app/Contents/Resources/sidecar/hpatchz/hpatchz

    • Size

      489KB

    • MD5

      f024be6e10d912c316618cdfd44e304b

    • SHA1

      f14a39b1ecc768cfbc5a540f2450fdd4f95cfd84

    • SHA256

      b7caf045b1fd02c2333d1206215b2331c23961df2236cea33c06a4c811344bea

    • SHA512

      8c88164966a3b83ceed702aa8591487a7092d3cd194838bb95edbda0b854f316ca765efb39c0c8e801ebfdd6c08f41d1aa2b1b33d82b51e013b2bdf5bc4c80b0

    • SSDEEP

      6144:fWNSxuSG2bX8FH1AIACRMRP31OHZHFwOAhLe5qn4wFjQegzklpYxcOKLVY14u40i:fWUPIAq8oZyOAaqn4MU/CWxczY4b

    Score
    4/10
    defense_evasion
    behavioral10

    • Target

      Yaagl HSR.app/Contents/Resources/sidecar/xdelta/xdelta3

    • Size

      271KB

    • MD5

      2f95e0aeac8d2c7021635d233847c5b3

    • SHA1

      61c127ec477f0d99dee3315582a7b9761140c4a7

    • SHA256

      5f18175acedfa92c6104c880a1bfdc575798f1cc8a6d4d92d029948b163fa22b

    • SHA512

      57f2702102077280d6e4dac148135ab05f6431c24ae99fa17a8bdf52ef6522dceb1ecd765bb7d9cda7d9890a7f74da74d9ecef9b6ba8184623aa19cd514431d9

    • SSDEEP

      6144:OjqgvnUDl4o9gggix8H/cOktGqZkf+b7r/C/jwJ1T3X7jHSRK6sWLVntI27p4R/R:KnkTC/jET3X7TSRWWLVntIoYLyu/FOf9

    Score
    4/10
    defense_evasion
    behavioral11

MITRE ATT&CK Enterprise v16

Tasks

OSZAR »