F-Secure researchers have come across a new variant of the Imuler Mac OS X malware that's designed to open backdoors and steal data from the computers of unsuspecting users. Backdoor:OSX/Imuler.B is similar to Imuler.A, but there are some noteworthy changes to it.
The threat contains
a function which dictates it to “exit” in case it detects any presence of Wireshark – the popular network protocol analyzed.
Furthermore, the malware’s developers have optimized its code and moved its command and control server to ouchmen.com
, a domain registered by one Yuan Tian from Tianjin, China.
According to experts, the Imuler Trojan is mainly utilized by cybercriminals against Tibetan rights activists.
Back in March, security experts discovered that cybercrooks were attempting to spread
the malicious element by relying on the picture of an attractive woman.