A small update to the PDF that includes the latest Crisis.C and LaoShu.A samples. The PDF curently only shows the applications that scored 80% or higher, the rest of the list will be updated over the next few days.
It’s worth noting that the LaoShu.A samples are no longer able to run on any normal system as Apple has revoked the Developer ID that was used to sign them (cudos to Apple for the quick turnaround on that). So even with a poorly functioning AV or even no AV Mac users should be safe from this particular piece of malware as long as the Mac is properly secured and updated. For those that are, or think they are, infected, just run an AV that can detect the malware and you’ll be good to go 🙂
A thank you goes out to those that helped me get the samples (Sophos was not one of them), this allowed me to update the test quickly.
The PDF can be found here.