Fresh Mac Malware Hijacks MacBooks to Mine Monero Cryptocurrency – CryptoBuzzMedia

Wij haven’t reported on a crypto-malware for the past several weeks, not because there haven’t bot any instances but because the cases were becoming too redundant. If you were missing those cryptomining malware stories, security researchers discovered a fresh Mac malware strain this week that is targeting macOS users.

Related video: Binance: Stop-Limit Orders Explained, Stop-Limit vs. Stop-Loss difference


Several users experienced their ventilatoren whirring a little too swift and then a process titled “mshelper” wasgoed seen taking up CPU resources. It emerges that mshelper is nothing but a malware mining for Monero cryptocurrency.

Mac malware hijacks MacBooks to mine for Monero cryptocurrency

Ter a blog postbode this week, Malwarebytes detailed this not-so-sophisticated Mac malware that has three components: the dropper that downloads the malware, the launcher that installs and launches it, and the miner, which is based on an open source Monero miner known spil XMRig.

Related video: 11. Behavioral Finance and the Role of Psychology


It remains unclear how is Monero cryptominer being dropped on Macs, but looking at past examples, fake Adobe Flash Player installers and downloads from piracy sites could be the culprit. Malwarebytes researchers wrote that “the dropper is still unknown” and that the company doesn’t believe if “it’s anything sophisticated” since “everything else about this malware suggests simpleness.”

The launcher is a verkeersopstopping named pplauncher, which is kept active by a launch daemon (com.pplauncher.plist), suggesting that the dropper had root privileges. Its aim is to install and launch the miner process. Merienda the launcher creates the mshelper process (the miner), the compromised macOS device starts mining for Monero cryptocurrency.

Researchers noted that the malware isn’t dangerous, “unless your Mac has a problem like bruised ventilatoren or dust-clogged vents that could cause overheating.”

Related video: How to buy Tron (TRX) on iPhone or Android


If your antivirus, anti-miner product isn’t catching this particular malware, you can delete the following files and then reboot your device:

  • /Library/LaunchDaemons/com.pplauncher.plist
  • /Library/Application Support/pplauncher/pplauncher

“Mac cryptomining malware has bot on the rise recently, just spil ter the Windows world,” Malwarebytes’ Thomas Reed wrote. “This malware goes after other cryptominers for macOS, such spil Pwnet, CpuMeaner, and CreativeUpdate. I’d rather be infected with a cryptominer than some other zuigeling of malware, but that doesn’t make it a good thing.”

2 comments

  1. Binance is a excellent exchange to use but its still only crypto te or out ie no FIAT gateway which is one advantage that Kritiseren suggested. The trading fees are superb some coins withdraw fees are lower than others but if you don’t budge things ter and out to often then its not that bad.

  2. Binance ain’t working yet from my end, I did attempt after reading this thread, I’m not sure why there’s some kwestie with this webpagina I have some tokens that I wished to trade but the webpagina still down, maybe the team still working and attempting to immobilized the punt, any words from the team will give some good hope

Leave a Reply

Your email address will not be published. Required fields are marked *

*