sample

executablemacOS171.0 KBx86_64, arm64

Code signing utility — manages cryptographic signatures and certificate validation

Verifies and applies digital signatures to executable code and bundles using cryptographic keys and certificates from the Keychain. Validates code signatures during verification operations and manages certificate chains for authentication. Accesses private storage to read and write signing-related data. Makes network connections to certificate validation endpoints and likely performs operations tied to Apple's code signing infrastructure and gatekeeper enforcement.AI

Fingerprint

Platform: macOS
Type: executable
Arch: x86_64, arm64
Min OS: 26.1.0
SDK: 26.1.0
File Size: 171.0 KB
UUID: 05ACCB04-BA72-3F08-BFAA-7A59735631A3
Analyzed: 2026-04-07T05:21:12Z
CDHash: cc25138e700771a86c88a00354d34536f8b6096329a38074094b8fc9a2054e56

Capabilities

StoragePrivate storage area access

com.apple.private.security.storage.AppDataContainers [object Object]

SecurityKeychain, certificates, code signing

/System/Library/Frameworks/Security.framework/Versions/A/Security

Frameworks8

libxcselect.dylib CoreSymbolication Symbolication Foundation Security libobjc.A.dylib libSystem.B.dylib CoreFoundation

Entitlements8

com.apple.developer.kernel.extended-virtual-addressingtrue

com.apple.private.dt.instruments.dtservicehub.clienttrue

com.apple.private.iosurfaceinfotrue

com.apple.private.security.storage.AppDataContainerstrue

com.apple.rootless.datavault.metadatatrue

com.apple.security.iokit-user-client-class

IOSurfaceRootUserClient

com.apple.system-task-ports.readtrue

com.apple.system-task-ports.read.safetrue

Interesting Strings

Bundle IDs(20)

com.apple.system-task-ports.read !com.apple.dt.SamplingTools.sample %com.apple.rootless.datavault.metadata %com.apple.system-task-ports.read.safe *com.apple.security.iokit-user-client-class0

File Paths(5)

/System/Library/Frameworks/CoreFoundation.framework/Versions/A/CoreFoundation /System/Library/Frameworks/Foundation.framework/Versions/C/Foundation /System/Library/Frameworks/Security.framework/Versions/A/Security /System/Library/PrivateFrameworks/CoreSymbolication.framework/Versions/A/CoreSymbolication /System/Library/PrivateFrameworks/Symbolication.framework/Versions/A/Symbolication

URLs & Endpoints(5)

$http://crl.apple.com/codesigning.crl0 %http://www.apple.com/appleca/root.crl0 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"><string>com.apple.compilers.llvm.clang.1_0</string>https://www.apple.com/appleca/0

Network Surface

Networking Frameworks

CoreFoundation Foundation

Endpoints(8)

HostnameSamplingTools-64572.95.1

Urlhttp://www.apple.com/DTDs/PropertyList-1.0.dtd">

Hostnamewww.apple.com

Hostnamemacosx26.1.internal

Urlhttp://www.apple.com/appleca/root.crl0

Urlhttp://crl.apple.com/codesigning.crl0

Hostnamecrl.apple.com

Urlhttps://www.apple.com/appleca/0

DNA Capability Vector

Location

0

Keychain

0

Network

0

Storage

1

Hardware

0

IPC

0

Analytics

0

Security

1

System

0

Behavioral Profile

URL Endpoints

5

Telemetry Strings

0

File Paths

5

Bundle IDs

20

IOKit Constants

0

Library Functions

0

Structural HashesSHA-256

Code38c79cfa22844301ee3722959ec8cbd7123c23760a957fc8ffeec64938c77747

Imports2b92a592cb3559d2210cccda8b38b9329bc8af18b8b50a300b0fa695f01e64f4

Frameworks0b5fdbfff02ee241d801174c906144476354d92a3f6c747f0edf6abaae156b66

Classes2f098279152c99a312dc1b857924d0f8041d88d0a2c25b6758164dfae89c40f6

Entitlements9aee39205ed997fe7023deefde522c8eed76ec8ff9c9b10857a1606f0c162cc7

Symbols2b92a592cb3559d2210cccda8b38b9329bc8af18b8b50a300b0fa695f01e64f4

Static Libraries0 / 46 functions identified

Functions(46)

0x100000db8sub_100000db8

0x100001bc0sub_100001bc0

0x100001c38sub_100001c38

0x100001c48sub_100001c48

0x100001c50sub_100001c50

0x100001c64sub_100001c64

0x100001c74sub_100001c74

0x100001c80sub_100001c80

0x100001c94sub_100001c94

0x100001ca8sub_100001ca8

0x100001cbcsub_100001cbc

0x100001cd0sub_100001cd0

0x100001ce4sub_100001ce4

0x100001cf8sub_100001cf8

0x100001d0csub_100001d0c

0x100001d1csub_100001d1c

0x100001d30sub_100001d30

0x100001da4sub_100001da4

0x100001df4sub_100001df4

0x100001e38sub_100001e38

Imports106 symbols from 6 dylibs

libSystem.B.dylib52 libobjc.A.dylib19 Symbolication13 Foundation8 CoreFoundation8

Exports1

_mh_execute_header0x0

Similar Binaries1,470 comparable

ReportMemoryException

NANDTaskScheduler