Posted by: David Harley | November 13, 2012

New OSX/Imuler variant

Intego has reported a new OSX/Imuler variant, which the company calls OSX/Imuler.E. Droppers have been seen that appear to be intended to target Tibetan activists, since they use group photographs of Tibetan organizations as bait.

This backdoor Trojan looks for user data on the infected machine and may take screenshots, all of which it sends to the remote server from which it takes instructions.

Graham Cluley’s blog for Sophos on the same malware is here and according to Virus Total, Trend Micro was also detecting it as of today. However, the sample has been shared, so other products should be detecting it in the near future, if they don’t already.

David Harley CITP FBCS CISSP

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Categories

%d bloggers like this: