Microsoft has detected several malware campaigns involving the new Anubis malware designed to steal keys from cryptocurrency wallets. CoinDesk reports.
Anubis is based on the fork of its predecessor Loki. The software was sold on darknet markets since June.
Microsoft stressed that Anubis differs from the similarly named banking Trojan. The new malware is downloaded from certain sites, steals data, and transmits it to a command-and-control server via HTTP POST.
“The POST command sends confidential information, which may include usernames and passwords, including those saved in browsers, credit card information, and cryptocurrency wallet identifiers,” says Tanmay Ganacharya, Director of Security Research at Microsoft.
The threat comes from unknown sites, suspicious emails with attachments or URLs. Anubis can be detected by suspicious files or running processes, such as ASteal.exe and Anubis Stealer.exe.
To protect against the malware, users should regularly update their antivirus software and use secure browsers.
Earlier, ESET researchers discovered a new trojan, KryptoCibule. It launches hidden mining on the victim’s device, changes cryptocurrency wallet addresses and steals personal data.
Subscribe to ForkLog news on VK!