Odyssey Stealer (Mac)

What kind of malware is Odyssey?

Odyssey is a variant of AMOS (Atomic) stealer malware targeting macOS users. It is designed to pilfer sensitive information from infected devices, including files, app data, and cryptocurrency wallets. Victims of this stealer can suffer monetary loss, become victims of identity theft, and encounter other issues.

Odyssey information stealer

Odyssey stealer overview

Upon execution, Odyssey gathers various device information, including the model name, UUID, CPU, RAM, and OS version. It then requests access to the Desktop and Documents, enabling it to download files from the victim's system. Moreover, Odyssey can access Keychain, the macOS password manager.

With this access, the stealer can retrieve a wide range of sensitive data, including Wi-Fi credentials, website logins, FTP passwords, credit card information, etc.

Odyssey is also capable of stealing sensitive information from various web browsers, including popular ones like Brave, Google Chrome, Microsoft Edge, Mozilla Firefox, Opera, OperaGX, Vivaldi, and Yandex. It targets stored data such as login credentials, browsing history, and autofill information.

By exploiting these browsers, Odyssey compromises users' personal data, making it accessible for malicious activities. Additionally, Odyssey can extract information from crypto wallets and cryptocurrency-related browser extensions. This can result in the theft of funds and sensitive data from victims' wallets.

Overall, cybercriminals can use Odyssey for various malicious purposes. They can hijack personal accounts (e.g., email, social media, banking, gaming) and steal identities. They can also steal money and make fraudulent purchases, send deceptive emails (or other messages) through stolen accounts, and more.

Additionally, threat actors can sell the stolen information to third parties. Thus, if Odyssey is present on the device, it should be eliminated as soon as possible.

Threat Summary:
Name	Odyssey information stealer
Threat Type	Stealer
Detection Names	Avast (MacOS:AMOS-BV [Trj]), G-Data (Generic.Trojan.Agent.52PDAF), Kaspersky (HEUR:Trojan-PSW.OSX.Amos.gen), Symantec (OSX.Trojan.Gen), Full List (VirusTotal)
Symptoms	Stealers can be designed to stealthily infiltrate the victim's computer and remain silent, and thus no particular symptoms are clearly visible on an infected machine.
Distribution methods	Fake Google Chrome installer, deceptive websites, malicious advertisements.
Damage	Stolen passwords and banking information, identity theft, monetary loss, unauthorized access to personal accounts, and other issues.
Malware Removal (Windows)	To eliminate possible malware infections, scan your computer with legitimate antivirus software. Our security researchers recommend using Combo Cleaner. Download Combo Cleaner To use full-featured product, you have to purchase a license for Combo Cleaner. 7 days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.

Conclusion

Odyssey is a sophisticated malware that targets macOS systems, stealing sensitive information from browsers, Keychain, and cryptocurrency wallets. It can also exploit various apps and files, posing significant risks to user privacy and security. Users should take immediate action to secure their systems if infected by Odyssey.

More examples of malware targeting macOS are FrigidStealer, Tiny FUD, and LightSpy.

How did Odyssey infiltrate my computer?

Threat actors have been observed distributing Odyssey through a fake Google Chrome installer. This malicious installer appears legitimate but contains malware, which is then executed upon installation. Cybercriminals usually distribute fake installers via unofficial websites, deceptive advertisements, pop-ups, and similar channels.

Other methods attackers use to deliver malware include sending malicious files or links via email, exploiting software vulnerabilities, using fake technical support (or similar) scams, pirated software (or cracking tools and key generators), P2P networks, third-party downloaders, and similar channels.

How to avoid malware?

Always download software from official websites or trusted app stores. Avoid third-party sources and pirated software. Avoid opening unexpected attachments or links in emails, especially from unknown senders. Regularly scan your system for threats using reliable security tools. Avoid pirated software.

Do not click on suspicious ads, pop-ups, or links, and block notifications from untrusted sites. Keep your operating system and software up to date. If your computer is already infected, we recommend running a scan with Combo Cleaner Antivirus for Windows to automatically eliminate all threats.

Odyssey administration panel login:

Odyssey stealer admin panel login

Fake Google Chrome installer containing Odyssey:

Odyssey stealer fake chrome installer used for injection

Fake Safari installer containing Odyssey:

Fake Safari installer spreading Odyssey stealer

Instant automatic malware removal:

Manual threat removal might be a lengthy and complicated process that requires advanced IT skills. Combo Cleaner is a professional automatic malware removal tool that is recommended to get rid of malware. Download it by clicking the button below:

DOWNLOAD Combo Cleaner

By downloading any software listed on this website you agree to our Privacy Policy and Terms of Use. To use full-featured product, you have to purchase a license for Combo Cleaner. 7 days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.

Quick menu:

What is kind of malware is Odyssey?
Remove Odyssey related files and folders from OSX.

Remove unwanted applications from your "Applications" folder:

Manual removal of malicious Mac applications

Click the Finder icon. In the Finder window, select "Applications". In the applications folder, look for "MPlayerX", "NicePlayer", or other suspicious applications and drag them to the Trash. After removing the potentially unwanted application(s) that cause online ads, scan your Mac for any remaining unwanted components.

DOWNLOAD remover for malware infections

Combo Cleaner checks if your computer is infected with malware. To use full-featured product, you have to purchase a license for Combo Cleaner. 7 days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.

Frequently Asked Questions (FAQ)

My computer is infected with Odyssey malware, should I format my storage device to get rid of it?

Formatting your storage device can remove malware, but it is not the only solution. First, use a trusted tool like Combo Cleaner to scan a computer and eliminate Odyssey. If the malware remains after the scan, formatting may become necessary to fully clear the infection. It is important to note that formatting erases all data.

What are the biggest issues that malware can cause?

Malware infiltration can result in a range of serious issues, such as identity theft, financial losses, file encryption, account takeovers, and the spread of additional infections.

What is the purpose of Odyssey?

Odyssey is a malware that steals sensitive information from infected devices, including system data, information stored in various web browsers, Keychain password manager, crypto wallets (and crypto extensions in browsers), and more.

How did Odyssey infiltrate my computer?

Odyssey malware is distributed through fake Google Chrome installers, which appear legitimate but contain malware. These fake installers are typically spread via unofficial websites, deceptive ads, pop-ups, and similar channels.

Will Combo Cleaner protect me from malware?

Combo Cleaner can detect and remove most known malware infections, but advanced threats often hide deep within the system. A full system scan is recommended to ensure malware is detected and eliminated.