However, “it’s interesting to note that persistence is broken in the Licatrade sample: the content of the resulting Launch Agent file (.) isn’t in Property List format as launchd expects, but instead is the command line to be executed,” said Léveillé. In a deep-dive of the Licatrade sample, researchers found that the application bundle includes a shell script (run.sh), which once downloaded launches and attempts to set up persistence on the victims’ system by installing a Launch Agent. The four apps in question have minor differences, but the functionalities are generally the same, researchers said. This most recent campaign has evolved to use new, rebranded apps, researchers said – however, “as in the previous campaigns, the malware reports to a server over HTTP and connects remote terminal sessions to another server using a hardcoded IP address.” GMERA was previously uncovered by researchers with Trend Micro, who in September 2019 said the malware was being spread via trojanized cryptocurrency apps in a separate campaign, leveraging malicious versions of the trading app Stockfolio. Once downloaded, the trojanized apps in question deploy malware called GMERA to collect victims’ browser information (including their cookies and browsing history), access and drain their cryptocurrency wallets and take screenshots of their devices. “Not only did the malware authors wrap the original, legitimate application to include malware they also rebranded the Kattana trading application with new names and copied its original website.” Léveillé, senior malware researcher with ESET, in an analysis last week. “For a person who doesn’t know Kattana, the websites do look legitimate,” said Marc-Etienne M.
#Download stockfolio for mac archive
The bogus websites include a download button, with a link to a ZIP archive containing the trojanized application bundle. The four fake applications in question, Cointrazer, Cupatrade, Licatrade and Trezarus, claim to be rebranded copies of an actual cryptocurrency trading application offering called Kattana. The actors behind the campaign used websites that copy Kattana’s legitimate website to convince unwitting cryptocurrency enthusiasts to download the fake apps.
#Download stockfolio for mac free
(6285 kbytes) Free N1v7 Stockfolio vers.1.2 3.Mac users are being targeted by trojanized cryptocurrency trading apps, which once downloaded actually drain victims’ cryptocurrency wallets, researchers warn. On Sierra | 5968 kb |įor High Sierra Stockfolio.v.1.4.8.0JMGC6.zip | 6349 kb | Version for Mojave vWM.vers.1.4.10. | 7364 kb | Track open positions in your portfolio and get useful stats, such as unrealized capital gains.įeatured for MacBook Air ICUBA_VERSION_1.6_ | 7174 kb | Automatically keep up to date on the latest news (RSS, StockTwits and Twitter) relating your stocks. Watch lists allow you to monitor in realtime the stocks you own, or intend to buy. Get detailed charts (line and candlestick) on the price history of your stock. Track equities from around the world using realtime quotes. It is extremely easy to set up and the best way to manage and follow your investment portfolio.
Stockfolio is an investment app for macOS that allows you to research and track interesting stocks. Description: Finance, Stockfolio, 6349 KB, Business, Stockfolio
0 kommentar(er)
