- Threat Encyclopedia
- Malware
- OSX_FAKEAV.A
Kaspersky: ARC:Tar ARC:[./MacSecurity.app/Contents/MacOS/MacSecurity]:Fat ; Sophos: OSX/FakeAV-A
Mac OS
This malware is noteworthy due to the increased potential for damage that it possesses. Specifically, it targets MAC OS.
To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram shown below.
This Trojan may be unknowingly downloaded by a user while visiting malicious websites.
It installs a fake antivirus/antispyware software. It displays fake alerts that warn users of infection. It also displays fake scanning results of the affected system. It then asks for users to purchase it once scanning is completed. If users decide to purchase the rogue product, users are directed to a certain website asking for sensitive information, such as credit card numbers.
Varies
Mach-O
No
06 May 2011
Displays fake alerts
Arrival Details
This Trojan may be unknowingly downloaded by a user while visiting malicious websites.
This malware arrives via the following means:
Rogue Antivirus Routine
This Trojan installs a fake antivirus/antispyware software.
It displays fake alerts that warn users of infection. It also displays fake scanning results of the affected system. It then asks for users to purchase it once scanning is completed. If users decide to purchase the rogue product, users are directed to a certain website asking for sensitive information, such as credit card numbers.
NOTES:
It displays the following graphical user interface (GUI):
8.900
8.141.00
07 May 2011
NOTES: