← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Malware: Cuckoo Behaves Like Cross Between Infostealer and Spyware
WHITE bluenumberone 2024-05-07 Modified: 2024-06-06
31
IOCs
MEDIUM VOLUME
Kandji is a free-to-use device management platform designed to help Apple users manage their Mac devices at scale and keep them safe. Â the same thing as malware.
xorfuncbuiltinstrcpybuiltinstrncpyhomedirectoryopencuckoosnprintfspotify musicuuidstrlenopenaprilvirustotalfirstpersistenceerrormkdirdiscorddesktopsteamarmeniabelarusukrainemacoscorecapturescreencaptureaddendum
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (7 / 31 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA1 1ef1f94d39931b6e625167b021a718f3cfe6bb80 SHA1 of d8c3c7eedd41b35a9a30a99727b9e0b47e652b8f601b58e2c20e2a7d30ce14a8 2024-05-07
FileHash-SHA1 2cdda89c50c2aa1eb4b828350b7086748c58fe08 SHA1 of 39f1224d7d71100f86651012c87c181a545b0a1606edc49131730f8c5b56bdb7 2024-05-07
FileHash-SHA1 696343119e0a0686072f6a31d0edb29a5b8fd116 2024-05-07
FileHash-SHA1 7a45639f768144799d608a4bbabf144fc1e3c016 2024-05-07
FileHash-SHA1 a700b0759351fd912cf8155579ea21f21437f075 SHA1 of 254663d6f4968b220795e0742284f9a846f995ba66590d97562e8f19049ffd4b 2024-05-07
FileHash-SHA1 c5c8335ed343d14d2150a9ba90e182ca739bde8a SHA1 of 1827db474aa94870aafdd63bdc25d61799c2f405ef94e88432e8e212dfa51ac7 2024-05-07
FileHash-SHA1 e9180ee202c42e2b94689c7e3fb2532dd5179fad SHA1 of a709dacc4d741926a7f04cad40a22adfc12dd7406f016dd668dd98725686a2dc 2024-05-07
References (1)
↗ https://blog.kandji.io/malware-cuckoo-infostealer-spyware