[leeno]

Hi Guys ,

Any body can help me with wireshark pcap generated from these sample . really i lack a mac system currently .
your help will be highly appreciated.

thanks

Leeno

[rkhunter]

No idea if there is already sample available on the net, i'm just back on the net and not checked these files but they are all detected as Trojan-Downloader.OSX.Flashfake.ab by KAV.
cf here ~ http://www.securelist.com/en/blog/20819 ... _confirmed
Samples in attach (25)

Thank you for the samples, I asked hashes (hashes, not malware) at Kaspersky guys (look comment at it article) but without result...

[namamo85]

Samples for Flashback.K and Flashback.O available here "http://contagiodump.blogspot.com/"

[rkhunter]

Symantec: Infections of Flashback Down to 270,000 http://www.symantec.com/connect/blogs/o ... own-270000

[rkhunter]

[It was quick] - Apple distributes Java update for removes the most common variants of the Flashback/Flashfake malware.
http://support.apple.com/kb/HT5242

[rkhunter]

Guys, did you notice that this Mac-botnet story was a usual PR-company from AV-companies side (especially from F-Secure and Dr.Web)? And another attempt to PR of AV-tools that makes nothing actually...

[EP_X0FF]

It revealed problems with security on MacOS isn't it? And Apple now aware who is Dr.Web :)

[rkhunter]

You didn't know about couple of Mac-malware before?

[EP_X0FF]

It wasn't so obvious and agressive Apple marketing always stated - "There is no malware on Mac, it is not Windows" :)

[rkhunter]

Guys that believes in Apple marketing, now believes in all these chaos of AV-marketing. :)