Intego has reported a new OSX/Imuler variant, which the company calls OSX/Imuler.E. Droppers have been seen that appear to be intended to target Tibetan activists, since they use group photographs of Tibetan organizations as bait.
This backdoor Trojan looks for user data on the infected machine and may take screenshots, all of which it sends to the remote server from which it takes instructions.
Graham Cluley’s blog for Sophos on the same malware is here and according to Virus Total, Trend Micro was also detecting it as of today. However, the sample has been shared, so other products should be detecting it in the near future, if they don’t already.
David Harley CITP FBCS CISSP
Leave a Reply