Threat Level: green Handler on Duty: Renato Marinho

SANS ISC: Mac OS X trojan - OSX/Leap SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Mac OS X trojan - OSX/Leap
Readers have written in about the new Mac OS X trojan that are spreading via iChat. This one looks like difficult one to propagate widely. The trojan masquerade itself as a JPEG file wrapped in a tgz archive. User will have to deliberately decompress the files and open (execute) the resulting JPEG in order to get infected. Unless the user is already running as admin, admin password will be prompted as well.

You almost have to work hard to get infected, seems like this is just the beginning of more Mac OS X malware to come in the future with stronger capability to spread.

Details can be found at:

Jason Lam

93 Posts
ISC Handler
Feb 16th 2006

Sign Up for Free or Log In to start participating in the conversation!