The name of the files are the same, same version: I would like to avoid having to reset the machine, but it seems the best way to go. Just trying to learn how to protect myself a little bit more. I am pretty sure I receive a lot of malicious emails, files, and connections attempts.
I am not a security expert, but I am learning better practices of how to make things more securely. I wanted to get the real dmg and compare to the weird one, is there a way of comparing two dmg files? Some kind of diff command? What kind of tool I can run to check if any OS command has been overwritten? I mean, I am not sure even if a simple copy operation might do something else. If yes, what tool can I use to explore what this package has inside, and what it did to my machine? If the signature does not match, it is a 100% sure this is a malicious package? I have a few things I would like to understand: So, trying to fix the situation and understand with might have happened.
I would like to understand what is it, why, and explore what are my choices.įirst of all, I know I should not have started the installation before checking the signature. So I realized this was not an original package. While I was installing it, I went to check the SHA256 of it.
