SYMBOLCOMMON_NAMEaka. SYNONYMS
apk.zanubis (Back to overview)

Zanubis


According to cyware, Zanubis malware pretends to be a malicious PDF application. The threat actor uses it as a key to decrypt responses received from the C2 server.

References
2022-12-07K7 SecurityLathashree K
@online{k:20221207:upsurge:58df189, author = {Lathashree K}, title = {{An upsurge of new Android Banking Trojan “Zanubis”}}, date = {2022-12-07}, organization = {K7 Security}, url = {https://labs.k7computing.com/index.php/an-upsurge-of-new-android-banking-trojan-zanubis/}, language = {English}, urldate = {2023-04-25} } An upsurge of new Android Banking Trojan “Zanubis”
Zanubis

There is no Yara-Signature yet.