Apple's App Store is promoted as a malware-free environment, but this is no longer valid starting today because an application from the store has included a type of malware that affects Windows operating system users. Although it seems strange, it seems that an application had in its installation package this quite old malware that can be detected by any antivirus and that only affects Windows. Installing the application on iOS or downloading it on a Mac does not affect users, but installing it on Windows infects the operating system without an antivirus.
Since the downloaded .ipa file is a package, these executables could be extracted using the Pacifist package manager, and then more accurately scanned. Afterwards, other malware programs like Sophos that initially missed detecting the malware instantly picked it up and described it as "Mal/CoiDung-A," a worm written in visual basic that installs files within the Windows system directory and then modifies the Windows registry to execute the malware when the system is restarted.
Copying the malware to a Windows virtual machine running the latest version of Microsoft Security Essentials resulted in the malware being immediately detected and removed from the system.
The application that contains this malware is called Instaquotes-Quotes Cards For Instagram and it was launched last week in the App Store, and Apple hasn't withdrawn it yet. The application is only dangerous if you actually download it through iTunes on Windows, so if you are thinking of downloading it, make sure that it is only present on an iDevice/Mac.
