Automated Malware Analysis IOC Report for

Path

Cmdline

Malicious

/Library/Frameworks/Mono.framework/Versions/4.4.2/bin/mono-sgen32

n/a

Details

PID:	829
Target ID:	278
Parent PID:	753
Name:	mono-sgen32
Path:	/Library/Frameworks/Mono.framework/Versions/4.4.2/bin/mono-sgen32
Commandline:	n/a
Size:	3722408
MD5:	8910349f44a940d8d79318367855b236
Time:	09:24:44
Date:	12/01/2022

/Users/berri/Desktop/J5RBhmpBtw

Details

PID:	829
Target ID:	279
Parent PID:	753
Name:	J5RBhmpBtw
Path:	/Users/berri/Desktop/J5RBhmpBtw
Commandline:	/Users/berri/Desktop/J5RBhmpBtw
Size:	360176
MD5:	e06e06752509f9cd8bc85aa1aa24dba2
Time:	09:24:44
Date:	12/01/2022

/bin/sh

n/a

Details

/usr/bin/whoami

whoami

Details

Domain

Country

Malicious

104.90.164.244

unknown

United States

Details

Signature Hits	Behavior Group	Mitre Attack
Connects to IPs without corresponding DNS lookups	Networking

IOC Report