YiSpecter: First iOS Malware That Attacks Non-jailbroken Apple iOS Devices by Abusing Private APIs
Tags
Common Information
| Type | Value |
|---|---|
| UUID | e3ae4a8e-fbdd-4a45-8f51-ecacc4c51db6 |
| Fingerprint | a4048d58cd3677c9 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Oct. 5, 2015, 1 a.m. |
| Added to db | Sept. 26, 2022, 9:32 a.m. |
| Last updated | Nov. 15, 2024, 2:39 p.m. |
| Headline | YiSpecter: First iOS Malware That Attacks Non-jailbroken Apple iOS Devices by Abusing Private APIs |
| Title | YiSpecter: First iOS Malware That Attacks Non-jailbroken Apple iOS Devices by Abusing Private APIs |
| Detected Hints/Tags/Attributes | 89/2/67 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | ithome.com |
|
| Details | Domain | 2 | com.weiying.ad |
|
| Details | Domain | 1 | bb800.com |
|
| Details | Domain | 1 | ad.bb800.com |
|
| Details | Domain | 1 | down.bb800.com |
|
| Details | Domain | 1 | ty1.bb800.com |
|
| Details | Domain | 1 | iosnoico.bb800.com |
|
| Details | Domain | 1 | qvod.bb800.com |
|
| Details | Domain | 1 | qvios.od.bb800.com |
|
| Details | Domain | 1 | dp.bb800.com |
|
| Details | Domain | 1 | iosads.cdn.bb800.com |
|
| Details | Domain | 359 | com.apple |
|
| Details | Domain | 180 | readme.md |
|
| Details | Domain | 1 | zs.haoyi.com |
|
| Details | Domain | 1 | zs.od.bb800.com |
|
| Details | File | 1 | 3794.pl |
|
| Details | File | 130 | info.pl |
|
| Details | File | 1 | mobilesafari.pl |
|
| Details | File | 1 | suspendstates.pl |
|
| Details | File | 3 | inst.exe |
|
| Details | File | 1 | leba99_setup_220041398.exe |
|
| Details | File | 10 | u.exe |
|
| Details | File | 1 | 亲情视频秀.exe |
|
| Details | File | 1 | 天使嫩女视频全集.msi |
|
| Details | sha256 | 2 | 57cc101ee4a9f306236d1d4fb5ccb3bb96fa76210142a5ec483a49321d2bd603 |
|
| Details | sha256 | 2 | 4938b9861b7c55fbbe47d2ba04e9aff2da186e282f1e9ff0a15bbb22a5f6e0e7 |
|
| Details | sha256 | 2 | fc55c5ced1027b48885780c87980a286181d3639dfc97d03ebe04ec012a1b677 |
|
| Details | sha256 | 2 | 5259854994945a165996d994e6484c1afc1c7e628cb5df2dc3750f4f9f92202e |
|
| Details | sha256 | 2 | 7714dbb85c5ebcd85cd1d93299479cff2cc82ad0ed11803c24c44106530d2e2f |
|
| Details | sha256 | 2 | ddd16577b458a5ec21ea0f57084033435a46f61dc5482f224c1fe54f47d295bc |
|
| Details | sha256 | 2 | 8fa135fc74583e05be208752e8ce191060b1617447815a007efac78662b425d0 |
|
| Details | sha256 | 2 | 526e1dc893629c00c017fbe62b53392cb26bc6b15947e7b8b7df10a62f40cbad |
|
| Details | sha256 | 2 | 41176825ba0627f61981280b27689a0c5cc6bfb310a408fa623515e6239b8647 |
|
| Details | sha256 | 2 | 98e9e65d6e674620eccaf3d024af1e7b736cc889e94a698685623d146d4fb15f |
|
| Details | sha256 | 2 | e7f071929a4304447cf638057d9499df9970b2a3d53d328a609f191a4bc29ffd |
|
| Details | sha256 | 2 | 8873908061f9c8d563de26fe6fa671080a90a2d60f795cc0664ef686e1162955 |
|
| Details | sha256 | 1 | 382b88b654d7c5149ce8e9813accb86fd58eb1c01d66f730774f27a14d6af06c |
|
| Details | sha256 | 1 | 0a106551b950d312c3847889cb233cbdaaebbc55fc2d7b6deb37f493079aa419 |
|
| Details | sha256 | 1 | 95c2b1fd5a9e0141e6c597771e832e6c6743713888bfad3d172c0180d650795b |
|
| Details | sha256 | 1 | 487a442fa69be5fe701662976a2f9d16f7f1dc4b03d63b9a289a6395855b42d0 |
|
| Details | sha256 | 1 | 63b4ff014e74bd0a31b16393d145d1332e963b2e17f07396529793a4f0cf8b48 |
|
| Details | sha256 | 1 | fa8594384e119908ec4ea5e0af9597251f6de76a66c30682e36ca1f1d303c7a9 |
|
| Details | sha256 | 1 | f2a478eb2674b65d602204b2df8fc5e715e22596b039f235f9dfa27c03bbaa9b |
|
| Details | sha256 | 1 | ca59d78e9d23a737054b70385060346a8e6afc4948cd84f97826deb05168c279 |
|
| Details | sha256 | 1 | af338b0d35e532644850f9f5e00b6c67d6e08609cb9ef79d48e9f435f87366d0 |
|
| Details | sha256 | 1 | 17c89f5a579ecc3f97914a0fdd8ed1305a3682e09a719f91716607c3d63eabdf |
|
| Details | sha256 | 1 | 0e75378d2ee5a7b90696dd67efa0d06d619f7f29021a7f056ff5a0fe881f8d6e |
|
| Details | sha256 | 1 | 55573153750d98938270d858ca220a4435ebcd1dac44388e5a59315e7811193c |
|
| Details | sha256 | 1 | 426f279a503a19d5c253621ad98f589d853270fd0a1ec54bf08ee55c1f647964 |
|
| Details | sha256 | 1 | f1e527fba122f91e79e790ba519c0d161cb4959bb1c89d6c20cf8a141ef8f854 |
|
| Details | sha256 | 1 | bcb3d4a2960e76cc169bd80ff26c7973502ef11baf0d45d52534184f055003a1 |
|
| Details | sha256 | 1 | 5fd7b3994fc95cd72e2c76607ed00f260783e02b6fdf228e1e4616ca1e8702be |
|
| Details | sha256 | 1 | 0771302f113d9c64fca3988a31020afa0767d3e1b66a2e74f819fd62b80b8a5e |
|
| Details | sha256 | 1 | 1d5eea2236a2a44fe0ff4e17491c37f04ffa4a0af9a4b09ecc463089e3f48f14 |
|
| Details | sha256 | 1 | 3404bbf56d81da355636371f2e84b3b83ead7d78384c1627db67c4a59c275285 |
|
| Details | sha256 | 1 | 04f69960b2e5fbd06f746e050c7a04e4ea9de67289fd82d3a85a92963aec387a |
|
| Details | sha256 | 1 | 363e58e1f489b6fade4975a54c02575e8832d95171b6b5646fd475d6a5f35ed9 |
|
| Details | sha256 | 1 | 2771276596981c0ff189c27e6869b147c3c3665fd8b94b14d68695ea6ea3d09d |
|
| Details | sha256 | 1 | 8d113243da8992220e73a2fd02ae28d209b326b191aeef95f3c8e223c1c6db96 |
|
| Details | sha256 | 1 | 9e538a58aed94a7748df9262ae0343dea9efce8d9117e0868eb404e1098747b6 |
|
| Details | sha256 | 1 | 1607cf9625d7bf4ef39f8c1383fa0b1b1edcd13939d5d49fba5cdc14a73a2d95 |
|
| Details | sha256 | 1 | 6bd56dd4cc6a97912531fcb8d9f79f814fd45c9e97600f170646308868b1097b |
|
| Details | sha256 | 1 | a8456f50c47b5248a93bcaebd05cb07bbf61527d5c7537767df1aaabb64bad95 |
|
| Details | Url | 1 | https://qvod.bb800.com/itms-services/jx152 |
|
| Details | Url | 1 | https://qvod.bb800.com/assets/upload/3794.plist |
|
| Details | Url | 1 | http://zs.haoyi.com |
|
| Details | Url | 1 | http://zs.od.bb800.com |