Lazarus continued Operation In(ter)ception against cryptocurrency-sector targets by shifting macOS job-lure decoys from Coinbase-themed vacancies to Crypto.com positions. The Crypto.com variant used a Mach-O first-stage dropper that created a WifiPreference directory, installed LaunchAgent persistence at ~/Library/LaunchAgents/com.wifianalyticsagent.plist, opened a decoy job PDF, and launched a staged application bundle. The second stage extracted and ran wifianalyticsagent, a downloader configured to contact market.contradecapital[.]com and write a later payload as WifiCloudWidget, although the C2 was offline during analysis. The campaign matters because it shows a long-running Lazarus pattern of using recruiting lures against cryptocurrency exchange personnel, extending earlier AppleJeus and Operation Dream Job tradecraft onto macOS systems.