Osx.Trojan.Leverage, a Breakdown Using Dtrace
Tags
attack-pattern: Data Dns - T1071.004 Dns - T1590.002 Launchctl - T1569.001 Malware - T1587.001 Malware - T1588.001 Tool - T1588.002 Launchctl - T1152 Sudo - T1169
Show in Graph
Common Information
Type Value
UUID 31df4f22-f37b-4b40-9010-244ad0b48434
Fingerprint b30b9d677bf78695
Analysis status DONE
Considered CTI value 0
Text language
Published March 11, 2014, 1:37 p.m.
Added to db Oct. 9, 2022, 4:11 p.m.
Last updated Nov. 17, 2024, 5:57 p.m.
Headline Vulnerability Information
Title Osx.Trojan.Leverage, a Breakdown Using Dtrace
Detected Hints/Tags/Attributes 41/1/13
Source URLs
Redirection Url
Details Source https://blog.talosintelligence.com/2014/03/osxtrojanleverage-breakdown-using-dtrace.html
URL Provider
Details Provider Source level domain
Details talosintelligence.com blog.talosintelligence.com
Attributes
Details Type #Events CTI Value
Details Domain 1 
dsc00117.app
Details Domain 2 
userevent.app
Details Domain 1 
dsc0117.app
Details Domain 111 
www.apple.com
Details Domain 2 
servicesmsc.sytes.net
Details File 1 
userevent.sys
Details File 3 
tem.pl
Details File 1 
dsc00117.jpg
Details sha256 1 
9bf2f2a273988a7e9b8318ae7a6aa26d23ea8e5c841468605443c1a9a1fac193
Details IPv4 619 
0.0.0.0
Details IPv4 13 
192.168.0.254
Details Url 1 
http://www.apple.com/dtds/prop
Details Url 73 
http://www.apple.com/dtds/propertylist-1.0.dtd