Banshee

Banshee

also known as HEUR:Trojan-PSW.OSX.Amos.gen

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 01/29/25 4:50 pm
    • Threat Level:
    • High

Description

Banshee is a macOS-targeting malware that steals sensitive data and evades detection by using encryption methods inspired by Apple’s XProtect.

Banshee Threat Removal

MacScan can detect and remove Banshee Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

June 25, 2025 • 1 min read
BlueNoroff

BlueNoroff

also known as HEUR:Trojan-Downloader.OSX.Lazarus.gen

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 11/28/24 7:01 am
    • Threat Level:
    • High

Description

This malware installs a backdoor for remote command execution and abuses the zshenv configuration file for persistence, bypassing macOS’s security mechanisms like Login Items notifications.

BlueNoroff Threat Removal

MacScan can detect and remove BlueNoroff Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

May 7, 2025 • 1 min read
HZ RAT

HZ RAT

also known as HEUR:Backdoor.OSX.HZRat.gen

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 09/30/24 5:30 pm
    • Threat Level:
    • High

Description

HZ RAT is a Remote Access Trojan (RAT) that is capable of granting remote attackers complete control of an infected Mac.

HZ RAT Threat Removal

MacScan can detect and remove HZ RAT Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

September 30, 2024 • 1 min read
Cthulhu

Cthulhu

also known as HEUR:Trojan-PSW.OSX.Cthulhu.a

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 08/29/24 4:48 pm
    • Threat Level:
    • High

Description

Cthulhu is a hybrid threat that uses Malware-as-a-Service (MaaS) to target macOS users to steal credentials and cryptocurrency.

Cthulhu Threat Removal

MacScan can detect and remove Cthulhu Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

August 29, 2024 • 1 min read
Nukesped

Nukesped

also known as HEUR:Backdoor.OSX.Nukesped.n, HEUR:Trojan-PSW.OSX.BeaverTail.a, Trojan.Python.Agent.li

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 02/28/25 5:10 pm
    • Threat Level:
    • High

Description

Nukesped is a hybrid threat that is attributed to the North Korean Lazarus Group, is an advanced cyber espionage tool designed to steal sensitive data and disrupt operations.

Nukesped Threat Removal

MacScan can detect and remove Nukesped Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

August 29, 2024 • 1 min read
TodoSwift

TodoSwift

also known as HEUR:Trojan-Downloader.OSX.Lazarus.gen

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 08/29/24 4:54 pm
    • Threat Level:
    • High

Description

TodoSwift is a hybrid threat that tricks the user into uknowingly downloading and installing files onto their system, allowing for more control of their system for arbitrary execution.

TodoSwift Threat Removal

MacScan can detect and remove TodoSwift Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

August 29, 2024 • 1 min read
Cuckoo

Cuckoo

also known as HEUR:Trojan-PSW.OSX.Amos.gen

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 05/30/24 5:31 pm
    • Threat Level:
    • High

Description

Cuckoo is a hybrid threat that demonstrates Spyware and Infostealer capabilities along with C2 network communications.

Cuckoo Threat Removal

MacScan can detect and remove Cuckoo Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

June 27, 2024 • 1 min read
Empire Transfer

Empire Transfer

also known as Trojan.MAC.Stealer.BF

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 03/19/24 3:59 pm
    • Threat Level:
    • High

Description

Empire Transfer is a trojan info stealer. It will attempt to gather sensitive information from a compromised system and funnel it back to the remote attacker.

Empire Transfer Threat Removal

MacScan can detect and remove Empire Transfer Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

June 27, 2024 • 1 min read
LightSpy

LightSpy

also known as HEUR:Trojan-Spy.Multi.Lightriver.a

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 06/27/24 5:15 pm
    • Threat Level:
    • Medium

Description

LightSpy is a hybrid threat that compromises a macOS-enabled Intel (or Apple Silicon with Rosetta 2 enabled) device. This malware has the capabilities to be upgraded over time and include features such as spying on the user and stealing information from the user.

LightSpy Threat Removal

MacScan can detect and remove LightSpy Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

June 27, 2024 • 1 min read
Multiverze

Multiverze

also known as HEUR:Trojan-PSW.OSX.Amos.w, Trojan:MacOS/Multiverze

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 07/31/24 3:36 pm
    • Threat Level:
    • High

Description

Multiverze is a hybrid threat that is often found on unknown or unverified download sites disguised as a trojanized version of pirated software and based on the campaign has numerous compromising capabilities on the device it is installed on.

Multiverze Threat Removal

MacScan can detect and remove Multiverze Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

March 19, 2024 • 1 min read
SpectralBlur

SpectralBlur

also known as UDS:Backdoor.OSX.Agent.gen

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 01/11/24 4:43 pm
    • Threat Level:
    • High

Description

SpectralBlur is a hybrid threat that maintains upgradable backdoor features that can receive, transmit, and modify files and commands from a remote server.

SpectralBlur Threat Removal

MacScan can detect and remove SpectralBlur Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

January 11, 2024 • 1 min read
ObjCShellz

ObjCShellz

also known as HEUR:Backdoor.OSX.Nukesped.gen

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 11/22/23 3:17 pm
    • Threat Level:
    • High

Description

ObjCShellz is a hybrid threat that has the capability to open remote shells (connections) to compromised targets and operate in the background without the owner knowing.

ObjCShellz Threat Removal

MacScan can detect and remove ObjCShellz Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

November 22, 2023 • 1 min read
KANDYKORN

KANDYKORN

also known as HEUR:Trojan.OSX.Agent.gen

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 11/22/23 3:11 pm
    • Threat Level:
    • High

Description

KANDYKORN is a hybrid threat with capabilities to detect, access, and steal any data, including cryptocurrency and application data.

KANDYKORN Threat Removal

MacScan can detect and remove KANDYKORN Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

November 22, 2023 • 1 min read
Realst Stealer

Realst Stealer

also known as HEUR:Trojan-PSW.OSX.HashBreaker, HEUR:Trojan-PSW.OSX.HashBreaker.e

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS 9
    • Last updated:
    • 12/30/24 6:18 pm
    • Threat Level:
    • High

Description

Realst Stealer is a Rust-based infostealer which targets macOS cryptocurrency wallets, stored passwords and browser data, designed to infect macOS 14 Sonoma (unreleased at this time publicly)

Realst Stealer Threat Removal

MacScan can detect and remove Realst Stealer Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

August 10, 2023 • 1 min read
VBS

VBS

    • Type:
    • Hybrid Threat
    • Platform:
    • Microsoft Windows
    • Last updated:
    • 07/13/22 5:17 pm
    • Threat Level:
    • High

Description

VBS is a hybrid threat that comes packaged as a driver that includes Mac,Win,Linux.

VBS Threat Removal

MacScan can detect and remove VBS Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

July 11, 2023 • 1 min read
LuckyMouse

LuckyMouse

    • Type:
    • Hybrid Threat
    • Platform:
    • Mac OS X
    • Last updated:
    • 08/22/22 5:27 pm
    • Threat Level:
    • High

Description

LuckyMouse is a backdoor that is disguised as the Eletron App. Classified as APT: China LuckyMouse / Iron Tiger/ HyperBro C2/ Electron app

LuckyMouse Threat Removal

MacScan can detect and remove LuckyMouse Hybrid Threat from your system, as well as provide protection against other security and privacy threats. A 30-day trial is available to scan your system for this threat.

Download MacScan

July 11, 2023 • 1 min read