loth34 wrote:
This is the link to the official MCSR Fairplay Github (https://github.com/ExeRSolver/mcsr-fairplay-public), as well as the link to the MCSR allowed mods list (https://mods.tildejustin.dev/) - it is 100% supposed to be downloaded, as most Minecraft mods are, and I do know what I am doing in that regard. I have experience using mods on Minecraft and know how they work. I am confident this does not contain malware, as other people on Macbooks that I know also have this mod and it runs fine
Have they tried to install & use the same version from the website you are trying to use? Something could have happened to the file since others have accessed it.
Does the site use checksum hashes to verify the files have not been modified or corrupted? If not, then that is a huge risk since there is no way to know their integrity.
Are these other users who are successfully using this mod (recently downloaded & installed)....are they also using a current & supported version of macOS? If not, then their version of XProtect signatures may be outdated & not be aware their system is infected with malware.
If these other Mac users are successfully using the currently downloaded mod & are running the same version of macOS as you are, then how did they get it to work? Or have they used an older download of the mod (version number can be the same)?
- I have even gotten them to send me their copy of the .jar file that runs this mod and it still does not work and marks the .dylib as malware, where on their mac it does not.
Is this ".dylib" file included in that copy of their .jar file?
I sincerely doubt that the malware detection on MacOS, or any other operating system, is 100% accurate at all times.
Nothing is 100% accurate. I believe Apple uses "signatures" to detect malware. So it should be fairly accurate, unlike other anti-virus products which try to predict trouble. Also, I believe if Apple detects an app trying to do something to the system that it will block it as well. See the following Apple article for details:
Protecting against malware in macOS - Apple Support
If you truly think it's malware, I would be interested to hear any ideas why it is only creating/running malware on my specific device.
You could have some malware on your system that has evaded detection and has decided to infect this file. It may be the source is unrecognized, but once the source delivers its payload, then macOS is able to detect a problem.
If the files you download are not provided with a hash to verify their integrity, then you don't know if the file is the same exact file as a developer posted to the site. I'm sure miscreants are actively targeting popular games that include mods since many people will download anything from anywhere without the proper research & verification. I'm not saying you have done this, but just in general.
Have you verified the name of the file with the mod developers? @Kurt Lang mentions that the file name looks very suspect & typical of malware infection....and I agree. I personally would not trust that file based on the name alone even if macOS had not triggered an alert.
Last year there was a malware spike in Minecraft mods....see the following two articles (I'm sure it has not stopped):
https://www.bleepingcomputer.com/news/security/stargazers-use-fake-minecraft-mods-to-steal-player-passwords/
https://research.checkpoint.com/2025/minecraft-mod-malware-stargazers/
