The Mac Malware of 2024 👾
Contents
The majority of samples covered in this post are available in our malware collection.
Goodbye 2024 …and hello 2025! 🥳
For what is now the 9th year in a row, I’ve put together a blog post that comprehensively covers all the new Mac malware that emerged throughout the year.
While the specimens may have been reported on before (for example by the AV company that discovered them), this blog aims to cumulatively and comprehensively cover all the new Mac malware of 2024 - in much technical detail, all in one place …yes, with samples available for download!
After reading this blog post you will have a thorough and comprehensive understanding of latest threats targeting macOS. This is especially important as Macs continue to flourish, with researchers at MacPaw’s Moonlock Lab noting a “60 percent increase [of macOS] in market share in the last 3 years alone”.
Looking forward, others predict the full dominance of macOS …
Goodbye 2024 …and hello 2025! 🥳
For what is now the 9th year in a row, I’ve put together a blog post that comprehensively covers all the new Mac malware that emerged throughout the year.
While the specimens may have been reported on before (for example by the AV company that discovered them), this blog aims to cumulatively and comprehensively cover all the new Mac malware of 2024 - in much technical detail, all in one place …yes, with samples available for download!
After reading this blog post you will have a thorough and comprehensive understanding of latest threats targeting macOS. This is especially important as Macs continue to flourish, with researchers at MacPaw’s Moonlock Lab noting a “60 percent increase [of macOS] in market share in the last 3 years alone”.
Looking forward, others predict the full dominance of macOS …
IoC
http://45.77.179.89/static/clip
http://download.ultraedit.info/bd.log
https://t.co/P2TGw98UR6
http://www.apple.com/DTDs/PropertyList-1.0.dtd
https://meet.no42.org
ftp://45.77.179.89/upload/encoun
http://bd.ultraedit.vip/fs.log
http://95.164.17.24:1224
https://t.co/t2zC6uM4LM
http://download.ultraedit.info/ud01.log
https://api.telegram.org/bot%s/sendMessage\
http://macyy.cn
https://t.co/jdbXPmh8sW
https://disc
http://45.1d42.1d22.92/send/
https://t.co/dHjsETM4Ko
http://{host1
https://t.co/RI3aV4QRVE
https://t.co/TmKsHAwDo3
https://github.com/geemion/Khepri
https://t.co/fj50AsBPcR
https://t.co/nHNBuUyC0y#cybersecurity
https://api.gofile.io/getServer
https://mirotalk.net/app/MiroTalk.dmg
https://t.co/nJCt6RnUfG
https://t.co/ZM3Hr0Cq2C#CyberSecurity
22.0.0.16
1.1.1.1
89.208.103.185
10.10.51.212
95.164.17.24
45.77.179.89
[email protected]
ce40829673687b48d68defa3176c8ab59a2a50ee9c658fe46a5de7692fbc112d
9abf6b93eafb797a3556bea1fe8a3b7311d2864d5a9a3687fce84bc1ec4a428c
9eb7bda5ffbb1a7549b1e481b1a6ed6efe2e28d0463370c87630fed74eee6228
5365597ECC3FC59F09D500C91C06937EB3952A1D
C265765A15A59191240B253DB33554622393EA59
http://download.ultraedit.info/bd.log
https://t.co/P2TGw98UR6
http://www.apple.com/DTDs/PropertyList-1.0.dtd
https://meet.no42.org
ftp://45.77.179.89/upload/encoun
http://bd.ultraedit.vip/fs.log
http://95.164.17.24:1224
https://t.co/t2zC6uM4LM
http://download.ultraedit.info/ud01.log
https://api.telegram.org/bot%s/sendMessage\
http://macyy.cn
https://t.co/jdbXPmh8sW
https://disc
http://45.1d42.1d22.92/send/
https://t.co/dHjsETM4Ko
http://{host1
https://t.co/RI3aV4QRVE
https://t.co/TmKsHAwDo3
https://github.com/geemion/Khepri
https://t.co/fj50AsBPcR
https://t.co/nHNBuUyC0y#cybersecurity
https://api.gofile.io/getServer
https://mirotalk.net/app/MiroTalk.dmg
https://t.co/nJCt6RnUfG
https://t.co/ZM3Hr0Cq2C#CyberSecurity
22.0.0.16
1.1.1.1
89.208.103.185
10.10.51.212
95.164.17.24
45.77.179.89
[email protected]
ce40829673687b48d68defa3176c8ab59a2a50ee9c658fe46a5de7692fbc112d
9abf6b93eafb797a3556bea1fe8a3b7311d2864d5a9a3687fce84bc1ec4a428c
9eb7bda5ffbb1a7549b1e481b1a6ed6efe2e28d0463370c87630fed74eee6228
5365597ECC3FC59F09D500C91C06937EB3952A1D
C265765A15A59191240B253DB33554622393EA59