December 2, 2022
Boonana Trojan Horse Analysis And Removal Tool

Boonana Trojan Horse Analysis And Removal Tool

Posted October 29, 2010 at 5:46pm by iClarified · 9809 views
SecureMac has released an initial analysis of the Boonana Trojan Horse and has created a free removal tool as well as administrative instructions to manually remove the affected machines. All of the information including the analysis of the malware is available at the Boonana Trojan Horse security bulletin page.

The initial infection vector of the Boonana trojan is through a message on social networking sites similar to "Is this you in this video?" which includes a link to an external site. Upon clicking the link, a java applet will attempt to load in the user's web browser.

During our testing, the malicious Java applet communicated with a Command & Control server, and presented an installer window at a random time after accessing the malicious site. This installer did not indicate that it had been downloaded from the web which indicates it is avoiding the quarantine flag typically set by programs such as Safari ...

Threat level discussed:
Due to the fact that the Command and Control servers for the malware are still active, gathering information such as IP addresses (most likely for control purposes), as well as the modification of the sudoers file to allow passwordless access, we maintain a threat level rating of critical for trojan.osx.boonana.a. In many cases, especially with botnets, the malware might not initially exhibit malicious behavior, but can become active at any time as the command and control servers are updated. Detailed procedures and instructions are also listed in the report.

Read More


Boonana Trojan Horse Analysis And Removal Tool
Add Comment
Would you like to be notified when someone replies or adds a new comment?
Yes (All Threads)
Yes (This Thread Only)
No
iClarified Icon
Notifications
Would you like to be notified when we post a new Apple news article or tutorial?
Yes
No
You must login or register to add a comment...
HO
HO - October 29, 2010 at 7:08pm
Fiery welcome to the world of reality to all the Mapple users, as Macs grow in market the field of malware gets closer by the minute to their doors, I just want to c the approach from Mapple on this regard, at least on Win MS pushes updates every week or so, not every year.
C.M.
C.M. - October 31, 2010 at 10:22pm
MS needs to push updates frequently to constantly patch their mess of an O.S. unlike.....
Recent. Read the latest Apple News.
RECENT
Tutorials. Help is here.
TUTORIALS
How to Create a Bootable macOS Ventura USB Installer [Video]
How to Fix 'No Matching Host Key Type Found' on Mac
Where to Download macOS Ventura
AppleTV Firmware Download Locations
Where To Download iPhone Firmware Files From
Deals. Save on Apple devices and accessories.
DEALS