IOC Radar
TLP:WHITE4 IOCs

macOS Users Hit by Infostealer Malware Through Malicious DMG Files

CP
Cyber Press
Published June 11, 2026Original Report

Diamond Model

Attack Flow6 steps · MITRE ATT&CK mapped

Initial AccessTA0001·T1566
1/6
Phishing
ActionPoison search results
Attackers use search engine optimization (SEO) poisoning to push fake software links to the top of search results, leading users to download malicious DMG files.

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise4

TypeIndicatorConfidenceScoreFirst Seen
MD578261b040e064d6ab4dfc2a29436351e
aptespionageexploit
Medium
53
Jun 11, 26
MD53eb6f92aedf74f109c7b4b0897ec39a8
aptespionageexploit
Medium
53
Jun 11, 26
MD5a4f31f55e09f45508f72693e782e212e
aptespionageexploit
Medium
53
Jun 11, 26
MD5f12be83c7a2545bd9194cffbbde1f294
aptespionageexploit
Medium
53
Jun 11, 26

IOC Relationship Graph

IOC Relationship Graph4 total IOCs
MD5
MD54REPORTmacOS Users Hit by Infoste
scroll to zoom · drag to pan · click IOC to open