From 525b55da6639430ac2698a87962708f0fa78d3f4 Mon Sep 17 00:00:00 2001
From: blackorbird <137812951@qq.com>
Date: Tue, 9 Apr 2019 22:02:38 +0800
Subject: [PATCH] Create aptnote20190409

---
 Oceanlotus/aptnote20190409 | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)
 create mode 100644 Oceanlotus/aptnote20190409

diff --git a/Oceanlotus/aptnote20190409 b/Oceanlotus/aptnote20190409
new file mode 100644
index 0000000..779073b
--- /dev/null
+++ b/Oceanlotus/aptnote20190409
@@ -0,0 +1,28 @@
+OceanLotus : macOS backdoor update
+For a description of OceanLotus' latest macOS update please see the article OceanLotus article.
+https://www.welivesecurity.com/2019/04/09/oceanlotus-macos-malware-update/
+
+Hash
+SHA1	ESET Detection name
+E615632C9998E4D3E5ACD8851864ED09B02C77D2
+
+OSX/OceanLotus.D
+
+File paths
+File path
+~/Library/SmartCardsServices/Technology/PlugIns/drivers/snippets.ecgML
+
+/Library/Storage/File System/HFS/25cf5d02-e50b-4288-870a-528d56c3cf6e/pivtoken.appex
+
+/tmp/store
+
+Network
+Domains
+daff.faybilodeau.com
+
+sarc.onteagleroad.com
+
+au.charlineopkesston.com
+
+URI
+/dp/B074WC4NHW/ref=gbps_img_m-9_62c3_750e6b35