CallMe

CallMe is a type of malware, specifically a Trojan, designed to operate on the Apple OSX operating system. It was first analyzed in February 2013 by AlienVault, who discovered that it is based on a tool called Tiny SHell, an open-source OSX shell tool available on the internet. The CallMe Trojan has been linked to cyber espionage campaigns against the Uyghur community, showcasing its potential for targeted attacks and data theft. The CallMe malware is closely related to another malicious software known as FakeM Original. Evidence of this relationship is seen in the infrastructure overlap between the two, notably through the use of the fully qualified domain name (FDQN) "googmail.org". This domain was utilized by both CallMe and FakeM samples, indicating shared resources or potentially common creators or operators. In addition to FakeM, there's also an infrastructure overlap with other Trojans such as MobileOrder and Psylo. One of these overlapping domains was used in the 2013 CallMe activity concurrently with its use for FakeM MSN samples. This suggests that the threat actors behind CallMe may have a broad reach, managing multiple malware variants and targeting diverse systems. These findings underline the importance of maintaining robust cybersecurity measures to protect against such sophisticated threats.