Home / malware Backdoor:MacOS_X/Flashback
First posted on 11 December 2012.
Source: MicrosoftAliases :
There are no other names known for Backdoor:MacOS_X/Flashback.
Explanation :
Backdoor:MacOS_X/Flashback is a multi-component family of malware designed to monitor your online searching and browsing behavior, to deliver targeted advertising content and search results that generates pay-per-click advertising revenue for its controllers.
Backdoor:MacOS_X/Flashback allows unauthorized access and control of an affected computer. An attacker can perform any number of different actions on an affected computer using Backdoor:MacOS_X/Flashback. This could include, but is not limited to, the following actions:
- Downloading and updating its components
- Gathering information about your computer
- Disabling security-related applications
- Contacting remote servers for configuration
It may also install arbitrary files on your computer.
The backdoor is available in 32bit and 64bit Mach-O (i386) binary format, and specifically affects Mac OS X users.
Backdoor:MacOS_X/Flashback variants have been observed distributed as a payload by the following exploits:
- CVE-2012-0507 - which we detect as Exploit:Java/CVE-2012-0507
- CVE-2011-3544 - which we detect as Exploit:Java/CVE-2011-3544
Analysis by Methusela Cebrian Ferrer
Last update 11 December 2012
