Over 21,794 people are online! Join now and start making friends!

Sabpab - Another Mac os Backdoor Trojan Discovered

Posted by THN Reporter On 4/15/2012 07:36:00 AM


Security firm Sophos has discovered more malware for the Mac OS X platform called Sabpab. It uses the same Java vulnerability as Flashback to install itself as a “drive-by download.” Users of older versions of Java now have still more malware to worry about.
It also doesn't require any user interaction to infect a system either just like Flashback all that needs to happen is for you to visit an infected webpage. Sabpab, according to Sophos, installs a backdoor that allows the hackers to capture screen snapshots, upload or download files and execute commands on infected Macs remotely.
The Trojan creates the files
  • /Users//Library/Preferences/com.apple.PubSabAgent.pfile
  • /Users//Library/LaunchAgents/com.apple.PubSabAGent.plist
Encrypted logs are sent back to the control server, so the hackers can monitor activity. Although one variant of Flashback installed a file in the LaunchAgents folder, not all tools for detecting Flashback do anything with that folder.
Symantec identifies the trojan as OSX.Sabpab which exploits the Oracle Java SE Remote Java Runtime Environment Denial Of Service Vulnerability (BID 52161) in order to install itself on to the compromised computer.
Sophos products, including free Mac anti-virus for home users, detect the Trojan horse as OSX/Sabpab-A.

Leave a comment!
html comments NOT enabled!
NOTE: If you post content that is offensive, adult, or NSFW (Not Safe For Work), your account will be deleted.[?]

giphy icon
last post
8 years ago
can view
can comment

other blogs by this author

 8 years ago
Guyz n' Dollz
blogroll (list of blogs that the blogger recommends)
6 years ago 
Ask the Ninja by Ninja  
10 years ago 
Grrrrrrrrrrrrrrr and stuff by Ninja  
6 years ago 
Cooking with Ninja by Ninja  
9 years ago 
help-tips by 1334117  
official fubar blogs
 5 years ago
fubar news by babyjesus  
 9 years ago
Scrapper Kustom's Offic... by SCRAPPER  
 13 hrs ago
e by e  
 10 years ago
fubar.com ideas! by babyjesus  
 7 years ago
fubar'd Official Wishli... by SCRAPPER  
 7 years ago
Word of Esix by esixfiddy  

discover blogs on fubar

blog.php' rendered in 0.2403 seconds on machine '222'.