Mac security software company Intego wrote Tuesday on a new Apple trojan that installs a permanent backdoor on computers, allowing attackers to collect system information and ultimately take over machines.

The malware also tries to download a Syrian Electronic Army image, leading to speculation that the pro-Assad hacktivists are responsible. The group denied involvement in reports, additionally retweeting about it.

The command-and-control server was down on Tuesday and no longer sending commands, according to the Intego post.

The trojan is a targeted attack and should be a low threat to most Mac users, Intego said. It has been named OSX/Leverage.A, and disguises itself as an image of a couple kissing, but secretly it is malicious software.