DarkSword packs both a complete iOS exploit chain and infostealer into one package. The chain initiates when Safari opens a malicious webpage with a hidden iframe that springs the malware from the WebContent sandbox. It then works its way into deploying a number of custom payloads designed to tap into various vital and privileged iOS services.
