Trend Micro is reporting on a a Trojan that is disguised as a Windows executable. It is built with the Mono framework built into the file, so it can execute the EXE code. Normally Windows executable files will not run on a mac, so some of the built in safeguards are bypassed by this method of delivery, “This routine evades Gatekeeper because EXE is not checked by this software, bypassing the code signature check and verification since the technology only checks native Mac files.”

The malicious files seem to be bundled with a Little Snitch .dmg. So, this is a case of always be sure of the provenance of the files you try to load on your computer.

TheHackerNews has a good rundown on this as well