Evolution of Zanubis, a banking Trojan for Android
Zanubis is an evolving Android banking Trojan that emerged in 2022, targeting financial institutions in Peru before expanding to virtual cards and crypto wallets. It impersonates legitimate apps to trick users into granting accessibility permissions, enabling extensive data theft and device control. The malware has undergone significant development, incorporating features like SMS hijacking, screen recording, and device credential stealing. Recent versions show improved obfuscation, encryption, and silent installation techniques. The threat actors, likely based in Peru, continue to refine the malware's capabilities and targeting strategy, focusing on high-value financial targets in the region.
Pulse ID: 68374e978eb7b411096dc0b4
Pulse Link: https://otx.alienvault.com/pulse/68374e978eb7b411096dc0b4
Pulse Author: AlienVault
Created: 2025-05-28 17:57:43
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Android #Bank #BankingTrojan #CyberSecurity #DataTheft #Encryption #InfoSec #Malware #OTX #OpenThreatExchange #RAT #SMS #Trojan #bot #AlienVault