vipw

executablemacOS132.5 KBx86_64, arm64

Apple system utility — performs unsigned code detection and security validation

Scans binaries and processes to identify unsigned or improperly signed code, reporting results through network endpoints and bundled service identifiers. Implements security validation routines that check code signatures against Apple's signing requirements. Connects to multiple network services for validation, logging, and reporting purposes. Operates as a background system component with minimal user interaction.AI

Fingerprint

Platform: macOS
Type: executable
Arch: x86_64, arm64
Min OS: 26.1.0
SDK: 26.1.0
File Size: 132.5 KB
UUID: F6845B74-F83E-3C67-A9A8-50BF32850DAB
Analyzed: 2026-04-07T05:21:13Z
CDHash: 96a8822584e174964efb67b00ac632653d2ef9fb99d276130eb9be31e28106f6

Frameworks1

libSystem.B.dylib

Interesting Strings

Bundle IDs(1)

URLs & Endpoints(4)

$http://crl.apple.com/codesigning.crl0 %http://www.apple.com/appleca/root.crl0 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">https://www.apple.com/appleca/0

Network Surface

Endpoints(6)

Urlhttp://www.apple.com/appleca/root.crl0

Hostnamewww.apple.com

Urlhttp://crl.apple.com/codesigning.crl0

Hostnamecrl.apple.com

Urlhttps://www.apple.com/appleca/0

Urlhttp://www.apple.com/DTDs/PropertyList-1.0.dtd">

DNA Capability Vector

Location

0

Keychain

0

Network

0

Storage

0

Hardware

0

IPC

0

Analytics

0

Security

0

System

0

Behavioral Profile

URL Endpoints

4

Telemetry Strings

0

File Paths

0

Bundle IDs

1

IOKit Constants

0

Library Functions

0

Structural HashesSHA-256

Codeb5f1ef487ef03cda014066ad0d1cd21ab480faca443edf216e5e6ac5a4481460

Imports2242f844e164489961600fb7da53f1e083f2c800c70a49a31854d2cd9cb74879

Frameworksb97e2cdeefa15f4389f6b3af8effe69a9a08ff67358c734e7ad450bacde906ed

Classese3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Entitlementse3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Symbols2242f844e164489961600fb7da53f1e083f2c800c70a49a31854d2cd9cb74879

Static Libraries0 / 12 functions identified

Functions(12)

0x100000628sub_100000628

0x1000007f0sub_1000007f0

0x10000090csub_10000090c

0x100000998sub_100000998

0x100000af8sub_100000af8

0x100000c08sub_100000c08

0x100000e64sub_100000e64

0x100000f24sub_100000f24

0x100000f40sub_100000f40

0x100000f6csub_100000f6c

0x100000f88sub_100000f88

0x100000fa4sub_100000fa4

Imports45 symbols from 1 dylibs

libSystem.B.dylib45

Exports1

_mh_execute_header0x0

Similar Binaries1,470 comparable