SYMBOLCOMMON_NAMEaka. SYNONYMS
osx.shlayer (Back to overview)

Shlayer

According to PCrisk, Shlayer is a trojan-type virus designed to proliferate various adware and other unwanted applications, and promote fake search engines. It is typically disguised as a Adobe Flash Player installer and various software cracking tools.

In most cases, users encounter this virus when visiting dubious Torrent websites that are full of intrusive advertisements and deceptive downloads.

References
2022-05-06CrowdStrikePaul-Danut Urian
macOS Malware Is More Reality Than Myth: Popular Threats and Challenges in Analysis
EvilQuest FlashBack Shlayer XCSSET
2022-04-15Center for Internet SecurityCIS
Top 10 Malware March 2022
Mirai Shlayer Agent Tesla Ghost RAT Nanocore RAT SectopRAT solarmarker Zeus
2021-07-19CrowdStrikeAspen Lindblom, Chris Sheldon, Joseph Godwin
Shlayer Malvertising Campaigns Still Using Flash Update Disguise
Shlayer
2021-04-27Medium Cedric OwensCedric Owens
macOS Gatekeeper Bypass (2021 Edition)
Shlayer
2021-04-26Objective-SeePatrick Wardle
All Your Macs Are Belong To Us: bypassing macOS's file quarantine, gatekeeper, and notarization requirements
Shlayer
2021-04-26Jamf BlogJaron Bradley
Shlayer malware abusing Gatekeeper bypass on macOS
Shlayer
2021-03-31Red CanaryRed Canary
2021 Threat Detection Report
Shlayer Andromeda Cobalt Strike Dridex Emotet IcedID MimiKatz QakBot TrickBot
2020-12-10US-CERTFBI, MS-ISAC, US-CERT
Alert (AA20-345A): Cyber Actors Target K-12 Distance Learning Education to Cause Disruptions and Steal Data
PerlBot Shlayer Agent Tesla Cerber Dridex Ghost RAT Kovter Maze MedusaLocker Nanocore RAT Nefilim REvil Ryuk Zeus
2020-01-23ThreatpostTara Seals
Shlayer, No. 1 Threat for Mac, Targets YouTube, Wikipedia
Shlayer

There is no Yara-Signature yet.