× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a610bb3396a2eb6186a135de5d0a5d29e16525fb7c069e853d0ce2bb90ca4921
File name: a610bb3396a2eb6186a135de5d0a5d29e16525fb7c069e853d0ce2bb90ca4921
Detection ratio: 36 / 60
Analysis date: 2019-05-21 17:40:57 UTC ( 4 days, 10 hours ago )
Antivirus Result Update
Ad-Aware MAC.OSX.Backdoor.Pintsized.B 20190521
AegisLab Trojan.OSX.Pintsized.m!c 20190521
AhnLab-V3 OSX-Trojan/Pintsized.B 20190521
ALYac MAC.OSX.Backdoor.Pintsized.B 20190521
Arcabit MAC.OSX.Backdoor.Pintsized.B 20190521
Avast MacOS:Pintsized-A [Trj] 20190521
AVG MacOS:Pintsized-A [Trj] 20190521
Avira (no cloud) OSX/Pintsized.A 20190521
BitDefender MAC.OSX.Backdoor.Pintsized.B 20190521
CAT-QuickHeal Backdoor.MacOSX.PintSized.A 20190521
Comodo Malware@#2cg0j4392tpcp 20190521
DrWeb BackDoor.Pintsized.2 20190521
Emsisoft MAC.OSX.Backdoor.Pintsized.B (B) 20190521
ESET-NOD32 OSX/Pintsized.A 20190521
F-Secure Malware.OSX/Pintsized.A 20190521
FireEye MAC.OSX.Backdoor.Pintsized.B 20190521
GData MAC.OSX.Backdoor.Pintsized.B 20190521
Ikarus MAC.OSX.Backdoor.Pintsized 20190521
K7AntiVirus Trojan ( 0001140e1 ) 20190521
K7GW Trojan ( 0001140e1 ) 20190521
Kaspersky Backdoor.OSX.Pintsized.a 20190521
MAX malware (ai score=100) 20190521
MaxSecure Virus.MAC.OSX.Backdoor.Pintsized.A 20190521
McAfee OSX/PintSized 20190521
McAfee-GW-Edition OSX/PintSized 20190521
Microsoft Backdoor:MacOS_X/PintSized.A 20190521
eScan MAC.OSX.Backdoor.Pintsized.B 20190521
NANO-Antivirus Trojan.Mac.Pintsized.bhedcy 20190521
Qihoo-360 Win32/Backdoor.3d2 20190521
Sophos AV OSX/Bckdr-ROZ 20190521
Symantec OSX.Pintsized 20190521
Tencent Win32.Backdoor.Pintsized.weg 20190521
TrendMicro OSX_PINTSIZED.ENV 20190521
TrendMicro-HouseCall OSX_PINTSIZED.ENV 20190521
Zillya Downloader.OpenConnection.JS.81548 20190520
ZoneAlarm by Check Point Backdoor.OSX.Pintsized.a 20190521
Acronis 20190521
Alibaba 20190513
Antiy-AVL 20190521
APEX 20190520
Avast-Mobile 20190521
Babable 20190424
Baidu 20190318
Bkav 20190521
ClamAV 20190521
CMC 20190321
CrowdStrike Falcon (ML) 20190212
Cybereason 20190417
Cylance 20190521
Cyren 20190521
eGambit 20190521
Endgame 20190521
F-Prot 20190521
Fortinet 20190521
Sophos ML 20190313
Jiangmin 20190521
Kingsoft 20190521
Malwarebytes 20190521
Palo Alto Networks (Known Signatures) 20190521
Panda 20190521
Rising 20190521
SentinelOne (Static ML) 20190511
SUPERAntiSpyware 20190521
Symantec Mobile Insight 20190516
TACHYON 20190521
TheHacker 20190521
TotalDefense 20190521
Trapmine 20190325
Trustlook 20190521
VBA32 20190521
VIPRE 20190521
ViRobot 20190521
Webroot 20190521
Zoner 20190521
The file being studied is a Mac OS X executable! More specifically it is a executable file Mach-O for x86_64 based machines.
File header
File type executable file
Magic 0xfeedfacf
Required architecture x86_64
Sub-architecture X86_64_ALL
Entry point 0x1000014f0
Reserved 0x0
Load commands 13
Load commands size 2040
Flags DYLDLINK
NOUNDEFS
TWOLEVEL
File segments
Shared libraries
Load commands
File identification
MD5 3a861b8526e397b3684a99f363ec145b
SHA1 745d46afcd83f883b4830adb0f8ef60a2d93055e
SHA256 a610bb3396a2eb6186a135de5d0a5d29e16525fb7c069e853d0ce2bb90ca4921
ssdeep
24576:Vh3D1zMmWuw/oF/FCxQjoX2qHj/n7OCUSz8oNLIukG9:Vh3D1zMmWurAQjA2qHzn7OCJ9I

File size 1.5 MB ( 1615996 bytes )
File type Mach-O
Magic literal
Mach-O 64-bit executable

TrID Mac OS X Mach-O 64bit Intel executable (100.0%)
Tags
64bits macho

VirusTotal metadata
First submission 2013-02-20 01:56:32 UTC ( 6 years, 3 months ago )
Last submission 2014-05-12 17:10:22 UTC ( 5 years ago )
File names 3a861b8526e397b3684a99f363ec145b
vti-rescan
Backdoor.OSX.Pintsized
a610bb3396a2eb6186a135de5d0a5d29e16525fb7c069e853d0ce2bb90ca4921
3a861b8526e397b3684a99f363ec145b_a610bb3396a2eb6186a135de5d0a5d29e16525fb7c069e853d0ce2bb90ca4921
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Created processes
HTTP requests
DNS requests
TCP connections