Skip to content
MalwareWiki

Malware

ZuRu

A malware that was observed being embedded alongside legitimate applications (such as iTerm2) offered for download on suspicious websites pushed in search engines.

ZuRu is a macOS malware family.

Background

This malware has been seen bundled with genuine applications (for example iTerm2) that were distributed via dubious websites promoted through search engines. It relies on a Python script to gather reconnaissance from the infected system and to download further payload(s).

Source: Malpedia (Fraunhofer FKIE).