Digita Security

Cybersecurity solutions for the

  • modern
  • mobile
  • independent
  • innovative
  • enterprising

macOS workforce

2.12.2014 ( Version 2045 )

CoinThiefA


OSX/CoinThief is Malware capable of stealing BitCoin wallet credentials and keys from users infected via trojanized BitCoin and LiteCoin ticker apps downloaded from popular sites, MacUpdate.com and Download.com. The original variant installed browser extensions for Safari and Chrome, while a later variant added support for FireFox. CoinThief was also found to have trojanized a pre-built application of StealthBit available for download on GitHub.com [1].

References:
  1. http://www.securemac.com/CoinThief-BitCoin-Trojan-Horse-MacOSX.php

Sample Hashes (VT links):
37c4bc94f2c08e90a47825fe7b2afbce908b5d74