CookieMiner MAC Virus
About CookieMiner MAC
CookieMiner MAC ismalware targeting Mac computers, and it aims to steal cryptocurrency. It tries to get login credentials and bypass two-factor-authentication (2FA) by stealing browsing cookies. It also mines for the cryptocurrency Koto. For those who have cryptocurrency, this is a pretty serious threat as it could bypass security measures, access accounts and steal the funds. However, it’s not exactly the most subtle threat, thus its existence on the computer will quickly be noticed. Because it also mines for cryptocurrency, the infected computer will slow down considerably, programs will launch much slower and lag, and the system will generally act unusual.
It’s not clear how exactly the malware enters a computer but it’s likely safe to assume that it uses all the usual methods. The malware could come attached to an email, may be concealed as a legitimate download, etc. You’re at much higher risk of getting not only this but plenty of other malware if you have bad browsing habits. We will discuss this in more detail in the following section.If you have noticed any indication that CookieMiner MAC could be inside your computer, you need to scan it with anti-malware software. The program would detect and remove CookieMiner MAC. We do not recommend performing manual removal as you may end up doing damage.
How can you get infected with CookieMiner MAC?
If your Mac is infected with CookieMiner MAC, it is likely you opened a malicious email attachment recently, or downloaded something from an unsecure source. A lot of spam emails have some malware attached to them, disguised as some kind of important document. When the file is opened, the malware is initiated. This is why it’s so important to be careful when opening emails, particularly those that come from unknown senders. Before opening attachments, always make sure the sender is legitimate and that the file is secure. The latter can be done by scanning the file with a malware scanner, such as VirusTotal. Only after you are completely sure the file is what it claims to be should you open it.
In addition to spam emails, malware is also often spread disguised as a legitimate program download. If you are someone who looks for software cracks, downloads copyrighted content illegally, or just generally does not check whether download sources are secure, you have a high chance of infecting your computer with something. If you want to keep a clean computer, always check what you are downloading and avoid dubious sources.
What does CookieMiner MAC do?
The malware was discovered by cybersecurity company’s Palo Alto Networks threat research team Unit 42, and they believe CookieMiner MAC has been developed from OSX.DarthMiner. The malware aims to steal login credentials and browser’s cookies in order to gain access to cryptocurrency accounts and steal funds.
The malware also steals information such as:
- iPhone text messages;
- iTunes backup;
- Passwords and credit card credentials saved in Google Chrome;
- browser (Google Chrome and Safari) cookies.
If cybercrooks manage to steal browser cookies associated with cryptocurrency accounts, they may be able to access them. It should also be noted that while 2FA for cryptocurrency accounts does add security, if the malware steals authentication cookies as well, they could be used to make a login attempt appear like it’s connected to a previous authorized session. In simple terms, crooks could bypass 2FA. From there on, crooks could steal funds in your cryptocurrency accounts.
In addition to trying to steal your cryptocurrency, the malware also loads a cryptominer onto your device. Interestingly enough, it does not mine for popular currencies like Bitcoin or Monero, and instead mines for Koto, a Japanese privacy oriented cryptocurrency. Mining uses a lot of computer resources, which means that if your computer is being used to mine for something, you will know. Your CPU usage would reach 80-100%, which would make your device basically unusable. Once the malware is gone, your computer should go back to normal. Although we should mention that your CPU running at such high temperatures for a longer period of time is not healthy for it, meaning its lifespan may shorten.
CookieMiner MAC removal
We highly recommend using anti-malware software to delete CookieMiner MAC. The program would take care of everything and ensure to eliminate the threat completely. If you attempt to manually uninstall CookieMiner MAC, you could end up doing further damage to the system, thus we do not recommend it.