Backdoor Activator Malware Running Rife Through Torrents of macOS Apps [Friday, February 02, 2024]

Researchers discovered a malware campaign infecting cracked macOS apps from torrent sites to install a backdoor for further malware delivery. The m...
Backdoor Activator Malware Running Rife Through Torrents of macOS Apps [Friday, February 02, 2024]
Backdoor Activator Malware Running Rife Through Torrents of macOS Apps

Backdoor Activator Malware Running Rife Through Torrents of macOS Apps

Description :
Researchers discovered a malware campaign infecting cracked macOS apps from torrent sites to install a backdoor for further malware delivery. The malware disables security settings then uses Python scripts to achieve persistence and retrieve additional payloads.

Published Created Modified
2024-02-02 08:58:01 2024-02-02 08:58:01 2024-02-02 09:37:36

Tags

Indicators

Malwares :
  • macOS.Bkdr.Activator
Hashes :
  • b1ae5f2162da9f77de0d4bedb5b023734e39185d794f6c664a86561c6308fcae
  • 4b1b8050588ad791c314ba18ba0a6b82a5b77ff8f188de7d51e13ea981ff5860
  • c80a95c3489ca33b3e20d80c197115241503142ea6f838d109d3c961526fb913
  • 5e1a034906f36c90deb780cc106ec91bebab876e9cb6d539e62ae7d96becc861
  • d86b14136999540f3d7706011e99f25188e626bb9181a747c6ab4ab6355e13d7
  • d232abe560853129ce40d389f56e134495c2283bb6f7f901deaf3f9b1a9549c4
  • 864195bf9a51cc94aa43c9c37c7c36b3e1b31a62bc96494fe6c5bd78de50d3a4
  • 5e8f663e1678778034b7c54b4841df2d352c92004a3a98a52211d0c8357c71ac
  • ac9050d745493eaae4f9bb61a6cc9079e194db3e29f87a925b553ba23f2456e0
  • fc47d0e694b204ea1ffcd64bcb865793f41d8b36af8c0e292fc7df9087e726cc
  • dab3178057471b7834eb3e72d6da9210cb0f842fb189265ece7ff6c93c2f4fc4
  • 626871be56acb49a618f2a5f82dfb2b5901fb1360ba573d4f10e98dec8616b4c
  • ac8a48b30c0fca098286ca408f18e7f941946938119f3245761ec2f7bec04c27
  • dbd955d3d246c6f8cfcaf766f36b5809b43d8127acc55fd82f7c5ceb92132041
  • 8a901ef945b0200a6da26d1628b4c93b8ba1b9e15760d7cbdb2baa74c0853ab4
MITRE ATT&CK Techniques : Other observables :
  • Technology

External References

You can download the txt file containing the indicators by clicking on the button below:

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! You’ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.