Cross-platform Malware Adwind Infects Mac
apple-desk-office-technology-mouse-feature.jpg" alt="" />
A colleague referred me to an article on a piece of cross-platform malware, called Adwind RAT (short for remote access tool), that was going undetected. This is often code for this malware was written in Java, which doesn’t necessarily mean that it actually drops a Mac payload. But, hey, new malware to play with how could I resist taking a peek?
The first thing I noticed was – surprise, surprise – the malware was written in Java. Prepared for disappointment, I grabbed a sample of the dropper from Virus Total.
It also required me to install Java just to run it. Since Apple quit including Java in the system years ago, that’s something that most people don’t have on their Macs these days. So, to open it, you’d have to download a large file – after figuring out exactly what to download on Oracle’s rather hard-to-navigate website – and install it. Strike two.
Image courtesy of malwarebytes.com