Smugness levels cut among Apple fanbois
I hadn't noticed. It's early days though I suppose.
You wasted electrons
I don't think that the sky is falling quite yet. The first choice for this with two search engines is at macupdate.com - The page has one Comment/Review "TheSafeMac Jul 05, 2016 This is malware: OSX.Backdoor.Eleanor"
It will not install unless the user overwrites their "Security & Privacy" settings to allow installation of apps from anywhere instead of the default restricted setting.
A simple removal method is here. If you are as paranoid as I am, and still managed to install it, I would recommend the manual method instead of the one that requires a download!
Mac users should periodically check the contents of:
Remove anything from these folders with a software name you don't recognise or that should not be starting up when you boot or log on without you knowing or asking it to.
Even if you delete something bona fide, it won't do any damage, it will just mean something like Adobe Autoupdater or Dropbox won't run automatically until manually run again.
Gun, foot, self inflicted
Just install it yourself! Or don't and don't worry, right Alfred?
less than 1 star...
Now if you just had a good Operating system
Like this 'sand-bagged' Android, why, you wouldn't have that problem.
Well, don't take candy from the boogeyman, kids :)
(Translation: don't allow app installation from _anywhere_ in Security & Privacy settings)
And maybe use an app firewall like Little Snitch that will ring bells if apps to nasty stuff like calling out when they shouldn't...
"transform your laptop into a botnet"
That sounds like powerful magic.
Do any of the Mac fanbois actually use the BSD firewall, it came included, not like it's worth much considering all there Crypto is already suspect thanks to INTEL "ME" and AMD "PSP" and they probably never even took the time to turn it on or install the "XCode" code-base to be as up-to date as possible against vulnerabilities.
So the user installed the malware after downloading some crappy doc converter ? So they either entered their admin details or run on an open admin account. No security model can mitigate users being tards. They must have even switched off the known developers filter.