According to Intego's security memo, OSX/HellRTS.D is being distributed on a number of forums shows that it will be accessible to a large number of malicious users who may attempt to use it to attack Macs.
According to the company, the source code of the OSX/HellRTS.D is already being distributed across multiple forums, which could potentially allow malicious attackers to create new variants of it.
More details on the malware:
It sets up its own server and configures a server port and password
It duplicates itself, using the names of different applications, adding the new version to a user’s login items, to ensure that it starts up at login. (These different names can make it hard to detect, not only in login items, but also in Activity Monitor.)
It can send e-mail with its own mail server, contact a remote server, and provide direct access to an infected Mac
It can also perform a number of operations such as providing remote screen-sharing access, shutting down or restarting a Mac, accessing an infected Mac’s clipboard, and much more
According to the brief security memo, OSX/HellRTS.D "is being distributed on a number of forums shows that it will be accessible to a large number of malicious users who may attempt to use it to attack Macs."