The malware in question installs different programs on a computer.
The group has been mysteriously quiet since.
Patrick Wardle of Synack security firm believes that the installer was last updated in October or November last year.
He added that the sample of malware utilises most of the same code as old Hacking Team malware.
I just found some unique code in this dropper.
or this is indeed a legit sample compiled by HackingTeam themselves.
It is unclear how this malware gets installed on a system.
However, Wardle has figured out a way to find out if your Mac is infected with it.
If you do find any of these codes then delete that entire directory, and remove the~/Library/LaunchAgents/com.apple.FinderExtAvt.plist file.
source: www.techworm.net
