{
	"id": "f4cb527d-2dcc-420d-aac8-8785d8f9e960",
	"created_at": "2026-04-06T02:11:05.693677Z",
	"updated_at": "2026-04-10T03:21:35.372003Z",
	"deleted_at": null,
	"sha1_hash": "39dacea6206755b22f5843b6853aee1ea92f4592",
	"title": "OSX.DubRobber",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 85422,
	"plain_text": "OSX.DubRobber\r\nArchived: 2026-04-06 02:01:54 UTC\r\nShort bio\r\nOSX.DubRobber (aka XCSSET) is Malwarebytes’ detection name for a versatile Trojan dropper that targets\r\nmacOS systems.\r\nSymptoms\r\nOSX.DubRobber can be found in a hidden .xcassets folder. It downloads and installs other malware so the user\r\nmay experience an ununsually slow system.\r\nSource and type of infection\r\nOSX.DubRobber is a Trojan dropper that is almost entirely written in AppleScript, and downloads components on\r\ndemand. OSX.DubRobber installs a very powerful backdoor, including all the usual backdoor functionalities, plus\r\ncapabilities for grabbing data from apps like Telegram and Evernote, ransomware-like encryption and decryption,\r\nand more.\r\nProtection\r\nMalwarebytes for Mac detects and removes OSX.DubRobber.\r\nRemediation\r\nMalwarebytes for Mac will detect and remove the components of this malware.\r\nDownload and install the latest version of Malwarebytes for Mac.\r\nhttps://blog.malwarebytes.com/detections/osx-dubrobber/\r\nPage 1 of 2\n\nClick the “Scan Now” button to perform a system scan.\r\nIf threats are detected during the scan, a count of detected threats is displayed. More detailed threat information is\r\ndisplayed after the scan completes.\r\nClick “Confirm” to move the detected threats to Quarantaine.\r\nIf a restart is required to complete remediation of threats detected during a scan, you will be notified. When a\r\nrestart is required, please remember to save all work before clicking “Restart”.\r\nSource: https://blog.malwarebytes.com/detections/osx-dubrobber/\r\nhttps://blog.malwarebytes.com/detections/osx-dubrobber/\r\nPage 2 of 2",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"MITRE"
	],
	"references": [
		"https://blog.malwarebytes.com/detections/osx-dubrobber/"
	],
	"report_names": [
		"osx-dubrobber"
	],
	"threat_actors": [],
	"ts_created_at": 1775441465,
	"ts_updated_at": 1775791295,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/39dacea6206755b22f5843b6853aee1ea92f4592.pdf",
		"text": "https://archive.orkl.eu/39dacea6206755b22f5843b6853aee1ea92f4592.txt",
		"img": "https://archive.orkl.eu/39dacea6206755b22f5843b6853aee1ea92f4592.jpg"
	}
}