Detections
Analytics
MacOS Malicious File Detection: User Defined Malware
critical Nessus Plugin ID 126261
Language:
Synopsis
Nessus detected potentially unwanted files on the remote host.Description
The checksum of one or more files on the remote MacOS host matches one of the signatures provided using the 'Provide your own list of known bad hashes' preference (found under the 'Hash and Whitelist Files' section) in the scan policy.Note that Nessus has only scanned MacOS executable binaries and libraries.
Solution
Uninstall the remote software if it does not match your security policy, and investigate your network for further signs of a breach.Plugin Details
Severity: Critical
ID: 126261
File Name: macos_malware_user_filescan.nbin
Version: 1.32
Type: local
Agent: unix
Family: Backdoors
Published: 6/26/2019
Updated: 5/20/2024
Supported Sensors: Nessus Agent, Nessus
Risk Information
CVSS Score Rationale: The detection is suspected as being malware.
CVSS v2
Risk Factor: Critical
Base Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: manual
CVSS v3
Risk Factor: Critical
Base Score: 10
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Vulnerability Information
Required KB Items: malware/macos/custom