I published the following diary on isc.sans.edu: “More obfuscated shell scripts: Fake MacOS Flash update”:
Yesterday, I wrote a diary about a nice obfuscated shell script. Today, I found another example of a malicious shell script embedded in an Apple .dmg file (an Apple Disk Image). The file was delivered through a fake Flash update webpage… [Read more]