OSX.CreativeUpdate, first detected in February 2018, is a cryptocurrency-mining malware that has been distributed via misleading links posted on the MacUpdate website. The malware was delivered to unsuspecting victims through malicious copies of Firefox, OnyX, and Deeper applications. Once installed, OSX.CreativeUpdate steals CPU power from infected machines in an effort to mine the Monero cryptocurrency. 


  • February 2018: OSX.CreativeUpdate macOS Cryptocurrency Miner Distributed via MacUpdate (TrendMicro)

Technical Details

  • Malwarebytes Labs provides a technical analysis of OSX.CreativeUpdate malware, available here.


Image Source: Malwarebytes Labs