North Korea-linked cyberthreat group known as Lazarus Group has added a new variant of the Dacls remote-access trojan (RAT) to its arsenal of spy gear. The new version for Mac is now spreading via a trojanized two-factor authentication (2FA) application for Mac called MinaOTP, mostly used by Chinese speakers. The malware also has a configuration file that pretends to be a database file related to the Apple Store, Library/Caches/Com.appstore.db
Source: https://threatpost.com/lazarus-macos-spyware-2fa-application/155532/