**Microsoft has warned about a recently discovered piece of malware, tracked as Anubis, that is being actively distributed to steal information from infected systems.**Anubis is the name of a well-known Android malware in the malware analyst community, but the family reported by Microsoft is not related to it.
According to Microsoft, the new piece of malware uses code forked from the Loki malware to steal system information, credentials, credit card details, and cryptocurrency wallets.
A new info-stealing malware we first saw being sold in the cybercriminal underground in June is now actively distributed in the wild. The malware is called Anubis and uses code forked from Loki malware to steal system info, credentials, credit card details, cryptocurrency wallets [pic.twitter.com/2Q58gpSIs0](https://t.co/2Q58gpSIs0)
— Microsoft Security Intelligence (@MsftSecIntel) [August 26, 2020](https://twitter.com/MsftSecIntel/status/1298752223321546754?ref_src=twsrc%5Etfw)The recently discovered malware only targets Windows systems; Microsoft detects it as PWS:MSIL/Anubis.G!MTB.
Anubis has existed since June, when it appeared on various cybercriminal forums.
_"Anubis is deployed in what appear to be limited initial campaigns that so far have only used a handful of known download URLs and C2 servers"_
Microsoft continuesMicrosoft shared some indicators of compromise (IoCs) for this threat and announced it will continue monitoring it.
Leave a Comment
Comments are reviewed before publishing.