OSX/Pintsized Backdoor Additional Details | Eric Romang Blog
Tags
| attack-pattern: | Data Domains - T1583.001 Domains - T1584.001 Launchd - T1053.004 |
Common Information
| Type | Value |
|---|---|
| UUID | bac79936-6495-47b1-a525-a0a6acc34913 |
| Fingerprint | e9c1adfb4e9f51c0 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | March 24, 2013, 1:27 p.m. |
| Added to db | Sept. 26, 2022, 9:30 a.m. |
| Last updated | Nov. 12, 2024, 11:51 a.m. |
| Headline | Eric Romang Blog |
| Title | OSX/Pintsized Backdoor Additional Details | Eric Romang Blog |
| Detected Hints/Tags/Attributes | 27/1/39 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | corp-aapl.com |
|
| Details | Domain | 359 | com.apple |
|
| Details | Domain | 2 | cloudbox-storage.com |
|
| Details | Domain | 2 | digitalinsight-ltd.com |
|
| Details | Domain | 2 | cache.cloudbox-storage.com |
|
| Details | Domain | 2 | img.digitalinsight-ltd.com |
|
| Details | Domain | 2 | pop.digitalinsight-ltd.com |
|
| Details | Domain | 1 | corp-appl.com |
|
| Details | Domain | 2 | ads.digitalinsight-ltd.com |
|
| Details | Domain | 1 | www.digitalinsight-ltd.com |
|
| Details | Domain | 2 | clust12-akmai.net |
|
| Details | Domain | 2 | fb.clust12-akmai.net |
|
| Details | Domain | 1 | fbu.clust12-akmai.net |
|
| Details | Domain | 2 | jdk-update.com |
|
| Details | Domain | 2 | ww1.jdk-update.com |
|
| Details | Domain | 1 | www.jdk-update.com |
|
| Details | Domain | 2 | fbcbn.net |
|
| Details | Domain | 1 | ak.fbcbn.net |
|
| Details | Domain | 1 | static.ak.fbcbn.net |
|
| Details | File | 1 | cocoa.pl |
|
| Details | File | 1 | cupsd.pl |
|
| Details | File | 1 | cups.pl |
|
| Details | File | 1 | env.pl |
|
| Details | File | 7 | launchd.pl |
|
| Details | File | 4 | javacpl.exe |
|
| Details | File | 2 | ww1.jdk |
|
| Details | File | 1 | www.jdk |
|
| Details | md5 | 1 | 7fe4149b82516ae43938de6b8316ed84 |
|
| Details | md5 | 1 | 2e35b9a683ccc2408fef5ca575abf0e6 |
|
| Details | md5 | 1 | 27f241c64303e4e2d1d94d3143a48eb9 |
|
| Details | md5 | 1 | 2b9b84f0612d6f9d7efb705dd7522f83 |
|
| Details | md5 | 1 | 34cee92669e0c60a9dbafae7319f49db |
|
| Details | md5 | 1 | d3f151b246deb74890c612606c6ad044 |
|
| Details | md5 | 1 | f419dfb35a0d220c4c53c4a087c91d5e |
|
| Details | md5 | 1 | 59424d4a567ae809f96afc56d22892b2 |
|
| Details | md5 | 1 | 0ec55685affc322a5d7be2e9ca1f9cbf |
|
| Details | md5 | 1 | 3a861b8526e397b3684a99f363ec145b |
|
| Details | md5 | 2 | 1582d68144de2808b518934f0a02bfd6 |
|
| Details | md5 | 1 | 622fc8b7daf425aed7f9ffa97e30c611 |