• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Malicious Trojan Horse Plagues Apple Mac OS Users

malware

New Member
Joined
Nov 7, 2004
Messages
5,422 (0.77/day)
Location
Bulgaria
Processor Intel Core 2 Quad Q6600 G0 VID: 1.2125
Motherboard GIGABYTE GA-P35-DS3P rev.2.0
Cooling Thermalright Ultra-120 eXtreme + Noctua NF-S12 Fan
Memory 4x1 GB PQI DDR2 PC2-6400
Video Card(s) Colorful iGame Radeon HD 4890 1 GB GDDR5
Storage 2x 500 GB Seagate Barracuda 7200.11 32 MB RAID0
Display(s) BenQ G2400W 24-inch WideScreen LCD
Case Cooler Master COSMOS RC-1000 (sold), Cooler Master HAF-932 (delivered)
Audio Device(s) Creative X-Fi XtremeMusic + Logitech Z-5500 Digital THX
Power Supply Chieftec CFT-1000G-DF 1kW
Software Laptop: Lenovo 3000 N200 C2DT2310/3GB/120GB/GF7300/15.4"/Razer
Nowadays everyone will tell you that most virus, spyware, malware and other malicious definitions are written solely for Windows, but it appears that times have changed a bit. Security experts are warning now about a new Trojan horse released in the wild, targeting Apple operating systems or more specifically Mac OS X Tiger and Leopard (version 10.4 and 10.5). In addition to the usual stuff a trojan can do (run in background, open ports, steal your passwords, replicate etc.) this one can also log what you type in every moment, take screenshots of your active desktop and even take a picture of you using Mac's built-in iSight camera. Here's how it works: AppleScript.THT comes either as a 3.1MB application dubbed AStht_v06 or as a 60KB compiled AppleScript script called ASthtv05. Once started on a Mac OS system it adds itself to the System Login Items and thus runs with root privileges every time the OS is started. Once the system is infected AppleScript.THT also moves itself into the /Library/Caches/ folder. To protect your system against this threat, security experts advice to run SecureMac MacScan 2.5.2 anti-virus software with the latest Spyware Definitions update (2008011). More details on the malicious code and additional removal instructions are posted here.

View at TechPowerUp Main Site
 

malware

New Member
Joined
Nov 7, 2004
Messages
5,422 (0.77/day)
Location
Bulgaria
Processor Intel Core 2 Quad Q6600 G0 VID: 1.2125
Motherboard GIGABYTE GA-P35-DS3P rev.2.0
Cooling Thermalright Ultra-120 eXtreme + Noctua NF-S12 Fan
Memory 4x1 GB PQI DDR2 PC2-6400
Video Card(s) Colorful iGame Radeon HD 4890 1 GB GDDR5
Storage 2x 500 GB Seagate Barracuda 7200.11 32 MB RAID0
Display(s) BenQ G2400W 24-inch WideScreen LCD
Case Cooler Master COSMOS RC-1000 (sold), Cooler Master HAF-932 (delivered)
Audio Device(s) Creative X-Fi XtremeMusic + Logitech Z-5500 Digital THX
Power Supply Chieftec CFT-1000G-DF 1kW
Software Laptop: Lenovo 3000 N200 C2DT2310/3GB/120GB/GF7300/15.4"/Razer
Thanks CrAsHnBuRnXp.
 

thoughtdisorder

New Member
Joined
Jan 4, 2008
Messages
1,818 (0.31/day)
Location
Just South of Mars
System Name Decent Lappy
In addition to the usual stuff a trojan can do (run in background, open ports, steal your passwords, replicate etc.) this one can also log what you type in every moment, take screenshots of your active desktop and even take a picture of you using Mac's built-in iSight camera.

Now that is some scary stuff!:eek:

Certainly knew this was coming though, and the trojans that will become more and more prevalent on our communication devices concern me as well...:twitch:
 

imperialreign

New Member
Joined
Jul 19, 2007
Messages
7,043 (1.16/day)
Location
Sector ZZ₉ Plural Z Alpha
System Name УльтраФиолет
Processor Intel Kentsfield Q9650 @ 3.8GHz (4.2GHz highest achieved)
Motherboard ASUS P5E3 Deluxe/WiFi; X38 NSB, ICH9R SSB
Cooling Delta V3 block, XPSC res, 120x3 rad, ST 1/2" pump - 10 fans, SYSTRIN HDD cooler, Antec HDD cooler
Memory Dual channel 8GB OCZ Platinum DDR3 @ 1800MHz @ 7-7-7-20 1T
Video Card(s) Quadfire: (2) Sapphire HD5970
Storage (2) WD VelociRaptor 300GB SATA-300; WD 320GB SATA-300; WD 200GB UATA + WD 160GB UATA
Display(s) Samsung Syncmaster T240 24" (16:10)
Case Cooler Master Stacker 830
Audio Device(s) Creative X-Fi Titanium Fatal1ty Pro PCI-E x1
Power Supply Kingwin Mach1 1200W modular
Software Windows XP Home SP3; Vista Ultimate x64 SP2
Benchmark Scores 3m06: 20270 here: http://hwbot.org/user.do?userId=12313
I'm sorry . . . I'd have something more insightful to say, but . . . I'm suppressing a chuckle :p
 
Joined
Dec 28, 2006
Messages
4,378 (0.70/day)
Location
Hurst, Texas
System Name The86
Processor Ryzen 5 3600
Motherboard ASROCKS B450 Steel Legend
Cooling AMD Stealth
Memory 2x8gb DDR4 3200 Corsair
Video Card(s) EVGA RTX 3060 Ti
Storage WD Black 512gb, WD Blue 1TB
Display(s) AOC 24in
Case Raidmax Alpha Prime
Power Supply 700W Thermaltake Smart
Mouse Logitech Mx510
Keyboard Razer BlackWidow 2012
Software Windows 10 Professional
oh Mac got burned, i knew there stuff was easier to access, see Vista is more secure, things can't do this with a script to gain root system access :D

MS 1 apple 0
 
Joined
May 24, 2007
Messages
5,401 (0.88/day)
Location
Tennessee
System Name AM5
Processor AMD Ryzen R9 7950X
Motherboard Asrock X670E Taichi
Cooling EK AIO Basic 360
Memory Corsair Vengeance DDR5 5600 64 Gb - XMP1 Profile
Video Card(s) AMD Reference 7900 XTX 24 Gb
Storage Samsung Gen 4 980 1 TB / Samsung 8TB SSD
Display(s) Samsung 34" 240hz 4K
Case Fractal Define R7
Power Supply Seasonic PRIME PX-1300, 1300W 80+ Platinum, Full Modular
Lol I don't think a trojan can steal your password without a keylogger, so your pretty much repeating yourself. Furthermore, keyloggers aren't some new thing that has popped up on Apples...Every decent trojan will have a keylogger.
 
Joined
Jan 16, 2008
Messages
1,349 (0.23/day)
Location
Milwaukee, Wisconsin, USA
Processor i7-3770K
Motherboard Biostar Hi-Fi Z77
Cooling Swiftech H20 (w/Custom External Rad Enclosure)
Memory 16GB DDR3-2400Mhz
Video Card(s) Alienware GTX 1070
Storage 1TB Samsung 850 EVO
Display(s) 32" LG 1440p
Case Cooler Master 690 (w/Mods)
Audio Device(s) Creative X-Fi Titanium
Power Supply Corsair 750-TX
Mouse Logitech G5
Keyboard G. Skill Mechanical
Software Windows 10 (X64)
"Plagues Apple Mac OS Users"?! Seriously? I've never been plagued by ANYTHING on my Mac, now my PC I can tell you stories about. This "Trojan" requires a user's participation, which most of us are smart enough to avoid. This is NOT widespread by any means. Another interesting point is that I never hear of any Mac trojan/virus announcement that isn't accompanied by an AntiVirus software companies name or product. (Its a scam!).
 
Joined
Dec 28, 2006
Messages
4,378 (0.70/day)
Location
Hurst, Texas
System Name The86
Processor Ryzen 5 3600
Motherboard ASROCKS B450 Steel Legend
Cooling AMD Stealth
Memory 2x8gb DDR4 3200 Corsair
Video Card(s) EVGA RTX 3060 Ti
Storage WD Black 512gb, WD Blue 1TB
Display(s) AOC 24in
Case Raidmax Alpha Prime
Power Supply 700W Thermaltake Smart
Mouse Logitech Mx510
Keyboard Razer BlackWidow 2012
Software Windows 10 Professional
you just heard of one, and it wasn't a test on the system, your mac market is big enough now for the hackers to care, and they are tired of hearing how secure it is lol. This is the preemptive strike i'd guess
 
Joined
Jan 16, 2008
Messages
1,349 (0.23/day)
Location
Milwaukee, Wisconsin, USA
Processor i7-3770K
Motherboard Biostar Hi-Fi Z77
Cooling Swiftech H20 (w/Custom External Rad Enclosure)
Memory 16GB DDR3-2400Mhz
Video Card(s) Alienware GTX 1070
Storage 1TB Samsung 850 EVO
Display(s) 32" LG 1440p
Case Cooler Master 690 (w/Mods)
Audio Device(s) Creative X-Fi Titanium
Power Supply Corsair 750-TX
Mouse Logitech G5
Keyboard G. Skill Mechanical
Software Windows 10 (X64)
"The Trojan is distributed as either a compiled AppleScript, called ASthtv05 (60 KB in size), or as an application bundle called AStht_v06 (3.1 MB in size). The user must download and open the Trojan horse in order to become infected." (Interesting that Malware's summary didn't include this!)

candle_86 the announcement is from a Mac security software company therefore your point is invalid. I STILL haven't heard of any Mac Trojan/Virus announcement that isn't accompanied by an Antivirus software companies name or product.

Windows PC users are tired of hearing how secure it is and take every opportunity to bash Mac OS X's security every chance they get regardless of how valid it really is.
 
Last edited:
Joined
Sep 9, 2006
Messages
2,483 (0.39/day)
Location
Great Yarmouth, United Kingdom.{East Anglian Coast
System Name Hells Core.
Processor Ryzen 9 5950x
Motherboard Asus Crosshair hero viii (wifi) x570
Cooling AlphaCool Aurora 420mm
Memory Patriot Viper Gaming RGB Series DDR4 DRAM 4133MHz 32GB Kit
Video Card(s) MSI Gaming X Trio 3070
Storage Sabrent 1TB Rocket Nvme PCIe 4.0 M.2
Display(s) Acer Predator XB271HU
Case Thermaltake Core X71
Power Supply Corsair RM850 80 plus gold
Software Windows 10
yep sounds like a new virus software company wants in on the market.
IDEA? lets make some viruses then sell a product that can get rid of them we'll be rich!!.

Sorry but this is my theory on viruses.
 
Joined
May 24, 2007
Messages
5,401 (0.88/day)
Location
Tennessee
System Name AM5
Processor AMD Ryzen R9 7950X
Motherboard Asrock X670E Taichi
Cooling EK AIO Basic 360
Memory Corsair Vengeance DDR5 5600 64 Gb - XMP1 Profile
Video Card(s) AMD Reference 7900 XTX 24 Gb
Storage Samsung Gen 4 980 1 TB / Samsung 8TB SSD
Display(s) Samsung 34" 240hz 4K
Case Fractal Define R7
Power Supply Seasonic PRIME PX-1300, 1300W 80+ Platinum, Full Modular
you just heard of one, and it wasn't a test on the system, your mac market is big enough now for the hackers to care, and they are tired of hearing how secure it is lol. This is the preemptive strike i'd guess

Lol...That's a completely foolish statement. There are only a handful of people who hack someone just to piss them off (or prove that Macs can be hacked). I for one could care less what company says about their product, if I'm hacking someone it won't be because I want to f**k with them...It will be because I want valuable information. ;)
 
Joined
May 5, 2008
Messages
3,318 (0.57/day)
Location
Dallas, Tx
Processor Intel i5-3570K @ 3.4Ghz
Motherboard Asrock LGA1155 Z77 Extreme 4
Cooling Cooler Master Evo 212
Memory 16GB (4X4) G.Skill Ripjaw 2 DDR3-1600
Video Card(s) Nvidia gForce GTX 660ti
Storage 1x Samsung 840 EVO 256GB 6Gb/s, 1x WD 500GB 6Gb/s, 1x WD 80GB 3Gb/s
Display(s) ASUS VH242H Black + 2 HP 2311x 23" LED
Case Fractal Design R4
Audio Device(s) Realtek OnBoard Both
Power Supply Cooler Master 850w
Software Windows 7 Ultimate 64-bit SP1
Now the no good Mac's can take it now.
 

FatForester

New Member
Joined
Mar 14, 2007
Messages
970 (0.16/day)
Processor Intel e2180 2.0ghz @ 2.8ghz w/ stock volts
Motherboard ASUS P5K-e Wifi-AP
Cooling Zalman 9500 w/ AS5
Memory G.Skill Black PI's DDR2 @ 896MHz 4-4-4-12 1.9v
Video Card(s) EVGA 8800GT w/ Zalman VF-900
Storage 2x Crucial C300 64GB, Samsung F3 2TB & 1TB, F1 1TB & 750GB
Display(s) ASUS VW246H 24" 16:9
Case Ultra / Chieftec Black Tower
Audio Device(s) X-fi XtremeMusic -> Z-5300e's
Power Supply PCP&C 610 Silencer
Software Windows 7 x64
Yea, the Mac market is becoming popular enough for it to start showing vulnerabilities, but just because one trojan that only two companies can 'fix' has hit the grid doesn't mean it's the end of the world. I can honestly say I'm chuckling a bit, but this isn't that realistic. Most of the threats we're more subjective to are OS independent and deal with being scammed in an email or trusting something stupid, not trojans gaining root access to our OS. I'm gonna have to agree with Ravenas, people that try to hack systems want valuable information, not your picture with a webcam (unless if they're just perverts).
 

ShadowFold

New Member
Joined
Dec 23, 2007
Messages
16,918 (2.85/day)
Location
Omaha, NE
System Name The ShadowFold Draconis (Ordering soon)
Processor AMD Phenom II X6 1055T 2.8ghz
Motherboard ASUS M4A87TD EVO AM3 AMD 870
Cooling Stock
Memory Kingston ValueRAM 4GB DDR3-1333
Video Card(s) XFX ATi Radeon HD 5850 1gb
Storage Western Digital 640gb
Display(s) Acer 21.5" 5ms Full HD 1920x1080P
Case Antec Nine-Hundred
Audio Device(s) Onboard + Creative "Fatal1ty" Headset
Power Supply Antec Earthwatts 650w
Software Windows 7 Home Premium 64bit
Benchmark Scores -❶-❸-❸-❼-
lol @ apple users. I hope you like your overpriced "virus free" OS now :D
 

p_o_s_pc

F@H&WCG addict
Joined
May 2, 2007
Messages
13,006 (2.11/day)
Location
Newark ohio
System Name el'lappy|Cruncher | Cruncher 2
Processor intel C2D T6400 | i7 3770k @4.2ghz | AII X2 220 @3.4ghz
Motherboard some Acer | Asus P8Z77-V Pro |Gigabyter GA-M61p-S3
Cooling dual 80mm cooling fan | WC'ing ) |cheapo
Memory 2x2gb ddr3 | 2x2gb Ripjaws 1600 |4x512mb D9s
Video Card(s) onboard | 60 1GB(hd7770 ) |8800GTS
Storage Momuntus xt 320gb |Kingston Hyper X 120gb SATA III|500gb WD
Display(s) 17in | 42" 1080P HD 3D TV
Case lappy case | CM HAF XB |none yet
Audio Device(s) onboard | onboard | onboard
Power Supply Dell brick w/ acer end end | Antec EW 650w |Antec SP 350w(upg.soon)
Software Windows 7 Ult. 64bit---->------->
Its about time MAC users get theirs
 

Kreij

Senior Monkey Moderator
Joined
Feb 6, 2007
Messages
13,817 (2.21/day)
Location
Cheeseland (Wisconsin, USA)
I guess it not surprising to see such vitriol from the PC crowd, but in reallity, none of us need this kind of crap. Mac users included.
Maybe we should sheath our swords and work together to elliminate this kind of BS and then get back to our normal, fun, OS trashing.
Just a suggestion.
 

aximbigfan

New Member
Joined
Oct 15, 2006
Messages
847 (0.13/day)
Location
St. Louis, MO
System Name QUAD1
Processor Intel Core i7 920
Motherboard Asus P6T SE
Cooling XIGMATEK HDT-S963
Memory OCZ 3 X 1GB Triple Channel
Video Card(s) HIS Radeon HD4670 IceQ
Storage Seagate 250GB 7200RPM SATA
Display(s) Acer AL1916W 19" Widescreen LCD
Case CM Storm Scout
Audio Device(s) Onboard
Power Supply Corsair 520 Watt
Software Windows XP Pro
HAHAHAHAHAHA!!!!!!

Where is your god now? :D

Chris
 

Wile E

Power User
Joined
Oct 1, 2006
Messages
24,318 (3.81/day)
System Name The ClusterF**k
Processor 980X @ 4Ghz
Motherboard Gigabyte GA-EX58-UD5 BIOS F12
Cooling MCR-320, DDC-1 pump w/Bitspower res top (1/2" fittings), Koolance CPU-360
Memory 3x2GB Mushkin Redlines 1600Mhz 6-8-6-24 1T
Video Card(s) Evga GTX 580
Storage Corsair Neutron GTX 240GB, 2xSeagate 320GB RAID0; 2xSeagate 3TB; 2xSamsung 2TB; Samsung 1.5TB
Display(s) HP LP2475w 24" 1920x1200 IPS
Case Technofront Bench Station
Audio Device(s) Auzentech X-Fi Forte into Onkyo SR606 and Polk TSi200's + RM6750
Power Supply ENERMAX Galaxy EVO EGX1250EWT 1250W
Software Win7 Ultimate N x64, OSX 10.8.4
lol @ apple users. I hope you like your overpriced "virus free" OS now :D

My Mac OS only cost $130 retail, and comes with all the features that 10.5 has. I wouldn't call that overpriced.

And it is still virus free. This is a Trojan. Meaning that you have to purposely download and run it. Completely different from a Virus.

Although I have to say, it won't be long before OS X does have viruses I think. I think it's gained enough popularity that it may be become a regular target. Albeit still less frequently than Windows I would imagine.
 
Joined
Feb 23, 2008
Messages
1,064 (0.18/day)
Location
Montreal
System Name Aryzen / Sairikiki / Tesseract
Processor 5800x / i7 920@3.73 / 5800x
Motherboard Steel Legend B450M / GB EX58-UDP4 / Steel Legend B550M
Cooling Mugen 5 / Pure Rock / Glacier One 240
Memory Corsair Something 16 / Corsair Something 12 / G.Skill 32
Video Card(s) AMD 6800XT / AMD 6750XT / Sapphire 7800XT
Storage Way too many drives...
Display(s) LG 332GP850-B / Sony w800b / Sony X90J
Case EVOLV X / Carbide 540 / Carbide 280x
Audio Device(s) SB ZxR + GSP 500 / board / Denon X1700h + ELAC Uni-Fi 2 + Senn 6XX
Power Supply Seasonic PRIME GX-750 / Corsair HX750 / Seasonic Focus PX-650
Mouse G700 / none / G602
Keyboard G910
Software w11 64
Benchmark Scores I don't play benchmarks...
Seems like the makers of this piece of work have been watching too many Apple ads.
The trojan taking a picture of the user :roll: ...
 
Joined
Dec 28, 2006
Messages
4,378 (0.70/day)
Location
Hurst, Texas
System Name The86
Processor Ryzen 5 3600
Motherboard ASROCKS B450 Steel Legend
Cooling AMD Stealth
Memory 2x8gb DDR4 3200 Corsair
Video Card(s) EVGA RTX 3060 Ti
Storage WD Black 512gb, WD Blue 1TB
Display(s) AOC 24in
Case Raidmax Alpha Prime
Power Supply 700W Thermaltake Smart
Mouse Logitech Mx510
Keyboard Razer BlackWidow 2012
Software Windows 10 Professional
in 2 years mac users who switched from windows will come back in droves because there new mac book has more virus/trojans/problems than a windows Me computer still online today, that your 13 year old downloads porn on
 

CyberDruid

New Member
Joined
Sep 23, 2007
Messages
2,887 (0.48/day)
Location
On top of a mountain
System Name Shop Dog
Processor E8400
Motherboard Asus Blitz Formula SE
Cooling d-Tek FuZion
Memory 2 x 2GB DDR2 800 G Skill
Video Card(s) EVGA 7900 GTX
Storage 150GB VelociRaptor
Display(s) Acer 21.5 1080p LED Back Lit Monitor
Case Working on it
Audio Device(s) PCI SoundMax
Power Supply Silverstone 750 Modular
Software XP Pro SP2
Benchmark Scores Super Pi 11.56s 1M at 4050mhz

ShadowFold

New Member
Joined
Dec 23, 2007
Messages
16,918 (2.85/day)
Location
Omaha, NE
System Name The ShadowFold Draconis (Ordering soon)
Processor AMD Phenom II X6 1055T 2.8ghz
Motherboard ASUS M4A87TD EVO AM3 AMD 870
Cooling Stock
Memory Kingston ValueRAM 4GB DDR3-1333
Video Card(s) XFX ATi Radeon HD 5850 1gb
Storage Western Digital 640gb
Display(s) Acer 21.5" 5ms Full HD 1920x1080P
Case Antec Nine-Hundred
Audio Device(s) Onboard + Creative "Fatal1ty" Headset
Power Supply Antec Earthwatts 650w
Software Windows 7 Home Premium 64bit
Benchmark Scores -❶-❸-❸-❼-
More like "Where is Steve Jobs now?"
 
Joined
Dec 28, 2006
Messages
4,378 (0.70/day)
Location
Hurst, Texas
System Name The86
Processor Ryzen 5 3600
Motherboard ASROCKS B450 Steel Legend
Cooling AMD Stealth
Memory 2x8gb DDR4 3200 Corsair
Video Card(s) EVGA RTX 3060 Ti
Storage WD Black 512gb, WD Blue 1TB
Display(s) AOC 24in
Case Raidmax Alpha Prime
Power Supply 700W Thermaltake Smart
Mouse Logitech Mx510
Keyboard Razer BlackWidow 2012
Software Windows 10 Professional

CyberDruid

New Member
Joined
Sep 23, 2007
Messages
2,887 (0.48/day)
Location
On top of a mountain
System Name Shop Dog
Processor E8400
Motherboard Asus Blitz Formula SE
Cooling d-Tek FuZion
Memory 2 x 2GB DDR2 800 G Skill
Video Card(s) EVGA 7900 GTX
Storage 150GB VelociRaptor
Display(s) Acer 21.5 1080p LED Back Lit Monitor
Case Working on it
Audio Device(s) PCI SoundMax
Power Supply Silverstone 750 Modular
Software XP Pro SP2
Benchmark Scores Super Pi 11.56s 1M at 4050mhz

jydie

New Member
Joined
Feb 2, 2006
Messages
209 (0.03/day)
Processor Athlon 64 X2 4200+ (socket 939)
Motherboard ASUS A8R-MVP Express200
Cooling Standard AMD CPU Heatsink/Fan
Memory 1GB Geil PC3200
Video Card(s) Sapphire Radeon X1900GT
Storage 2 Maxtor 7200 HDD (80GB)
Display(s) Samsung 19" LCD
Case Yellow Chieftech Dragon
Audio Device(s) integrated
Power Supply Thermaltake TT-420AD
Software Windows XP Home
Dang, those built in webcams can be turned against you. :twitch: It is creepy to think about pictures of you or anybody in your family being sent to some stranger.
 
Top