4.2012 ( Version 7 )

MDropperA

Also Known As: OSX/Sabpab, OSX/Sabpub, OSX/Olyx, OSX/MDropper, OSX/Lamadai, OSX/Lasyr

OSX/MDropperA is a malware backdoor that is installed via a malicious Java Applet exploiting CVE-2012-0507 or a malicious Word document that exploits CVE-2009-053 [1]. It can be remotely controlled and is capable of downloading and uploading files, executing new processes, and taking screenshots [1].

References:

https://www.f-secure.com/v-descs/backdoor_osx_sabpab_a.shtml

Sample Hashes (VT links):

c3f32ba569ce3b3c8901d1bb537363317df36c42557e6a5ee4e07fd8ee7956a9

Digita Security

Cybersecurity solutions for the

macOS workforce

4.2012 ( Version 7 )

MDropperA

Also Known As: OSX/Sabpab, OSX/Sabpub, OSX/Olyx, OSX/MDropper, OSX/Lamadai, OSX/Lasyr

References:

Sample Hashes (VT links):

Subscribe to the Digita Newsletter

Digita Security

Cybersecurity solutions for the

macOS workforce

4.2012 ( Version 7 )

MDropperA

Also Known As: OSX/Sabpab, OSX/Sabpub, OSX/Olyx, OSX/MDropper, OSX/Lamadai, OSX/Lasyr

References:

Sample Hashes (VT links):