a3da426b13074c25b8e6ba40b5365dc3ed312920a01000882e5009abeb5bca24

Analysis

max time kernel
0s
max time network
69s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20250410-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20250410-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
08/05/2025, 08:02

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Yaagl HSR.app/Contents/MacOS/parameterized
Size

385B
MD5

9969f7095761854b4db8b2c461cc8fe6
SHA1

451282dfa23c25a680e71806e32bdc79f2aa686b
SHA256

505583905a61e5cddd8d4f99e10d68854d0044082bbd430b96b766f620afcb07
SHA512

372c34cad7214c7ecd1715eb33603bfb56cd868891c9c7662749af502c058f123d1f2f173e5bae4e118d12c843f00607a5e360a7b8848b02d951d643688d6edf

Score

3^/10

discovery

Malware Config

Signatures

Reads runtime system information 1 IoCs

Reads data from /proc virtual filesystem.

discovery

description	ioc	Process
File opened for reading	/proc/filesystems	mkdir

/tmp/Yaagl HSR.app/Contents/MacOS/parameterized
"/tmp/Yaagl HSR.app/Contents/MacOS/parameterized"
1⤵
PID:1551

/usr/local/sbin/bash
bash "/tmp/Yaagl HSR.app/Contents/MacOS/parameterized"
1⤵
PID:1551

/usr/local/bin/bash
bash "/tmp/Yaagl HSR.app/Contents/MacOS/parameterized"
1⤵
PID:1551

/usr/sbin/bash
bash "/tmp/Yaagl HSR.app/Contents/MacOS/parameterized"
1⤵
PID:1551

/usr/bin/bash
bash "/tmp/Yaagl HSR.app/Contents/MacOS/parameterized"
1⤵
PID:1551

/sbin/bash
bash "/tmp/Yaagl HSR.app/Contents/MacOS/parameterized"
1⤵
PID:1551

/bin/bash
bash "/tmp/Yaagl HSR.app/Contents/MacOS/parameterized"
1⤵
PID:1551
- /usr/bin/dirname
  dirname -- "/tmp/Yaagl HSR.app/Contents/MacOS/parameterized"
  2⤵
  PID:1554
- /bin/mkdir
  mkdir -p "/Library/Application Support/Yaagl HSR"
  2⤵
  - Reads runtime system information
  PID:1555
- /usr/bin/dirname
  dirname "/tmp/Yaagl HSR.app/Contents/MacOS"
  2⤵
  PID:1556
- /usr/bin/rsync
  rsync -rlptu "/tmp/Yaagl HSR.app/Contents/Resources/." "/Library/Application Support/Yaagl HSR"
  2⤵
  PID:1557
- /usr/bin/dirname
  dirname "/tmp/Yaagl HSR.app/Contents"
  2⤵
  PID:1560

/tmp/Yaagl HSR.app/Contents/MacOS/Yaagl
"/tmp/Yaagl HSR.app/Contents/MacOS/Yaagl" "--path=/Library/Application Support/Yaagl HSR"
1⤵
PID:1551

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/Library/Application Support/Yaagl HSR/.icon.icns.EcAvC0

Filesize
366KB

MD5
bd3f06d16af9c34a8cfee06da061d421

SHA1
df03a7e57791054a882b9f0e634474b3c1b66315

SHA256
f7625622a30b2c14b45e3e80b41c4ad1b21a5853a1c714de81e69c487bfd7829

SHA512
b7a791631cf995caa8a50944d13dbd6776d6981e90a564beee0fb70d012814f158120de31ebcf784e7033ff8062ed4c59d8e054307e022353c3d25e2941a96f2

Download Submit
/Library/Application Support/Yaagl HSR/.resources.neu.TDqYuI

Filesize
963KB

MD5
c5ea30af7689927d1d0826add3478958

SHA1
9382691381c5ea205937ac18036fc13daf154ab4

SHA256
5fd1229a095da638484592b29400bd9f00865b7f0e57ecc6742dad156058216f

SHA512
160399b8a62266acdbc3c2002ee20276de4ad912d3ad2630c53de4e887e4043a82d5dcb7ef5c98804dee9c5071d8ec015fa47ce4697dc6ac62b46f2cd3c4bb58

Download Submit
/Library/Application Support/Yaagl HSR/sidecar/7z/.7zz.8MIQqq

Filesize
5.0MB

MD5
a9c17a27dea8ae6d13e452c3f8d27aeb

SHA1
027d4c0fb3802cb99a056067649b9aa923f21bb3

SHA256
10bba361f87be5882e362df8f283646fb5fff1a7f63246149a5809be286897f5

SHA512
20b49005e2cdeb0e01a61934e4dbf8d23255597ae3f4c9b0daa0c8dd6a456affed8b3e5e6ff695a8d3011af7f3b42e65af4231a97821f452fd63d29f8a72fffd

Download Submit
/Library/Application Support/Yaagl HSR/sidecar/7z/.License.txt.vvrnv8

Filesize
3KB

MD5
4ba0e8e6be95d6f886e98c065d511115

SHA1
89621fa2efba9d0c9bc2c1593e4400d5d174efe2

SHA256
acd745b244c9e105db455a6064fb9483d67123e3e816e55526aa44c88ecdeecf

SHA512
c6f836fd3c77333e5c8a3131c5537431e9d76edc8cead646c3ee98ec9f3fba1ccb25006bc21bbe2dfa78abd6e34a0302502853a9c5358ab72d0bdc461644cb78

Download Submit
/Library/Application Support/Yaagl HSR/sidecar/aria2/.LICENSE.txt.UJ40zQ

Filesize
17KB

MD5
acbbb3a0f95dfe49c9340734d7f66c24

SHA1
bd9c2bdb28aff551c2d68ebcaf4ce0d7822a0562

SHA256
54b2f1b3c4b8e010862d9aa8c8f6e8b210dc3e60a4e2adfdbfcf9aeaea2fae91

SHA512
07ce6093075c22c464105926061e2d460940b251c4e9369798ed9e3f127773bf282a59ce964fd78287c9abf7c631c41ebaf90f96fa7fbca702fb5e9f168639a1

Download Submit
/Library/Application Support/Yaagl HSR/sidecar/aria2/.aria2c.PB8OEy

Filesize
1.6MB

MD5
c63381043fe790c0778dee788a377482

SHA1
1268da8bd225b0fe8bdd13e15bcf075be2ab9701

SHA256
9bb4ff0638b1fc198d5ee2e6badb431febdef62295346769911e5ff8341d5ec4

SHA512
ba85a9508af351b5b2a488acc2711e120f59a865faab8d4789139c3d3d77bf309a4b17bea0727fd51621bd4a4c3d3b6087ea8f72aab96b2ab0809ff9dd008f02

Download Submit
/Library/Application Support/Yaagl HSR/sidecar/hpatchz/.LICENSE.txt.mbIxMg

Filesize
2KB

MD5
b9180a60439ec101db1720514400eabc

SHA1
22d201be1352481b315562d43186597c418ebd0c

SHA256
ba902e6d3cbee406aee3c0dc6667279e3a7a8f91315bf97022e83e9fffcf6ac4

SHA512
ecb5b3ce1d0382b1a3b973cd60f48dea416c0034ae653d2b27c8b1a58ab26203c43f9bf0ef81b2fcea90088b0079d458a3d58e3681e716b208aac9f15a62364c

Download Submit
/Library/Application Support/Yaagl HSR/sidecar/hpatchz/.hpatchz.Dx3lUY

Filesize
489KB

MD5
f024be6e10d912c316618cdfd44e304b

SHA1
f14a39b1ecc768cfbc5a540f2450fdd4f95cfd84

SHA256
b7caf045b1fd02c2333d1206215b2331c23961df2236cea33c06a4c811344bea

SHA512
8c88164966a3b83ceed702aa8591487a7092d3cd194838bb95edbda0b854f316ca765efb39c0c8e801ebfdd6c08f41d1aa2b1b33d82b51e013b2bdf5bc4c80b0

Download Submit
/Library/Application Support/Yaagl HSR/sidecar/xdelta/.LICENSE.txt.ogvg3G

Filesize
8KB

MD5
cf96fa0d649f7c7b16616d95e7880a73

SHA1
cdfb6815f2613f38b7658aa6c5c1f3db62cda06c

SHA256
6cf63d87586c7c25c3ab8e62eef5c75bbaa982b0a6f9c00c59e2720255aac9ec

SHA512
7b3e71e6f89ca2e689c37d47011335652453a944b030d60b86fb5aafa30cbcf37257a1dbaafb9f6ee958411f843ce7f3994b950a143bade63867a2a5f9fd6e7f

Download Submit
/Library/Application Support/Yaagl HSR/sidecar/xdelta/.xdelta3.lKHgcp

Filesize
271KB

MD5
2f95e0aeac8d2c7021635d233847c5b3

SHA1
61c127ec477f0d99dee3315582a7b9761140c4a7

SHA256
5f18175acedfa92c6104c880a1bfdc575798f1cc8a6d4d92d029948b163fa22b

SHA512
57f2702102077280d6e4dac148135ab05f6431c24ae99fa17a8bdf52ef6522dceb1ecd765bb7d9cda7d9890a7f74da74d9ecef9b6ba8184623aa19cd514431d9

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads