Separate names with a comma.
Discussion in 'OS X' started by lasthope, Feb 13, 2006.
From the moderator: The link originally posted here has been removed.
it opens in terminal. not right.
If this really has pics, someone post them here please.
The download is a unix executable file which opens in Terminal but is disguised as a jpeg.
and that means
Oh wow, this member should be banned. I downloaded the file and it comes up as a picture file then when I click on it it pops open Terminal and runs something. Looks like someone attempted to make a Mac virus...
It does seem so. Also looks like they failed (though I'm not sure because i didn't download it myself)
i noticed the same basic thing.
he is creating another thread (if you believe the public profile), watch for more virus attempts. if he is not banned by the time he finsihes.
That didn't look good from the start so i didn't download it.....yo post starter what are you dealing with, think this is funny?
This guy should really be banned. Only one post and his first post is this.
Thanks for the warnings people.
lol, i downloaded it and ran it. Now if this was a pc, i would have already reformatted and reinstalled it. But since im on a mac right now im just like WTF. has anyone been able to find out what it does exactly. Probably not somthing harmful since you would have had to enter your password.
Edit: whats even funnier is that i was 'lucky' enough to download the file before it was changed by a mod. That person should be banned, even though he is less than likely to comeback.
He was trying to do something with Fire.app but I don't know what. Also i know for a fact that it didn't do anything because the permission was denied.
Phew. got kinda worried for a sec.
It would not of effect a PC. Virus made for a mac have no effect on a Windows computer. Same goes the other way. It is one of the few times it would of been better to look at it though a PC since it can not be effected by it.
But this could just be a started. I wouldnt be surpised to see a real virus for the mac enter this way. It would not be wide spred becaue it how it needs to be activated.
I know that, I meant if I opened a file on windows that opened command prompt or installed something. However that would never happen because I never download files that i cannot identify. This one caught me off guard though, forgot how easy it was to change the icon.
Can someone PM me the link or something so I can see what it does exactly?
What is Fire.app? Do all Macs have it?
Note to self, dont download things from ñ0ºBs
It's an IM client
Nope, that's the weird thing it's a 3rd party chat app that not a whole lot of people have.
Yea I wonder why he would target an app like that. Can anyone decode it and figure out exactly what he was trying to do?
Was it a binary or a shell script? I'm thinking "script"as it opened in a terminal. If you can yu read the file in an editor?
If it is a binary then sometimes you can gain som insight by running the "strings" command on it. See "man strings"
Technically you don't call these things "virus". This is a clasic "Trojan Horse" Only this attempt was poorly executed
I'm surprised this hasn't happened more on here...it's so easy to write an applescript file and disguise it as anything...scary!
Man why do I always miss out on all the fun!
I didnt see the terminal app that was run or anything but by descriptions it sounds like the noob was trying to get into a users computer via a chat app.
Or maybe he wanted to add himself to everyone's buddy list and then have the app send a message to his AIM addy just to see how many people fell for it. Unfortunately (or fortunately for us) he didn't test.