According to Microsoft Security Intelligence, Anubis is an information stealer sold on underground forums since June 2020. The name overlaps with the Android banking malware but is unrelated. It contains code forked from Loki PWS.
|2022-08-08 ⋅ Medium CSIS Techblog ⋅ |
An inside view of domain anonymization as-a-service — the BraZZZerSFF infrastructure
Riltok magecart Anubis Azorult BetaBot Buer CoalaBot CryptBot DiamondFox DreamBot GCleaner ISFB Loki Password Stealer (PWS) MedusaLocker MeguminTrojan Nemty PsiX RedLine Stealer SmokeLoader STOP TinyNuke Vidar Zloader
|2021-05-02 ⋅ Cybleinc ⋅ |
Mobile Malware App Anubis Strikes Again, Continues to Lure Users Disguised as a Fake Antivirus
|2020-08-27 ⋅ Twitter (@MsftSecIntel) ⋅ |
Tweet on Anubis Stealer
|2020-05-31 ⋅ The Record ⋅ |
Russian hacker Pavel Sitnikov arrested for sharing malware source code
There is no Yara-Signature yet.