Random opened webpages without user interaction.
Please let BitDefender disinfect your files.
Daniel RADU, Senior Virus Researcher
Application is a proof-of-concept designed to show new ways to attack MacOSX.
File is copied in "/Library/InputManagers/" . This is used to deploy input servers for use with the Cocoa text input management system. Once copied in that directory it will be loaded by all newly created processes.
Once loaded it tires to create a file "/tmp/macrocosm" and set it's attributes as executable. If file is already present it means that it is already started and thus return to host.
It opens a random (harmless) internet webpage from a predefined list containing: