Category: Viruses and SpywareProtection available since:25 Nov 2008 12:16:07 (GMT)
Type: TrojanLast Updated:27 Aug 2013 14:24:29 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

OSX/Jahlav-A is a Trojan created for the Mac OS X operating system. The initial malicious installer is distributed to free downloading web sites purporting to be a key generator for cracking applications.

As a part of the installation a malicious shell script file AdobeFlash is created in /Library/Internet Plug-Ins folder and setup to periodically run. The script contains another shell script in an encoded format which in turn contains a Perl script with the main malicious payload.

The perl script uses http to communicate with a remote website and download code supplied by the attacker.