Check out the results from our first round of ATT&CK Evaluations at attackevals.mitre.org!

WireLurker

WireLurker is a family of macOS malware that targets iOS devices connected over USB. [1]

ID: S0312
Aliases: WireLurker
Type: MALWARE
Platforms: iOS

Version: 1.1

Alias Descriptions

NameDescription
WireLurker[1]

Techniques Used

DomainIDNameUse
MobileT1458Exploit via Charging Station or PCWireLurker monitors for iOS devices connected via USB to an infected OSX computer and installs downloaded third-party applications or automatically generated malicious applications onto the device.[1]
MobileT1406Obfuscated or Encrypted PayloadWireLurker obfuscates its payload through complex code structure, multiple component versions, file hiding, code obfuscation and customized encryption to thwart anti-reversing.[1]

References