Anubis, Egyptian god of the dead (Egor Myznik/Unsplash)
A new form of malware called Anubis is now out in the world after being circulated for sale on cybercrime dark markets in June, Microsoft Security Intelligence. Using forked code from Loki malware, Anubis can steal cryptocurrency wallet IDs, system info, credit card information and other data.
Importantly, this malware is distinct from a family of Android banking malware also called Anubis. It joins a growing list of malwares that look for vulnerable cryptocurrency stashes.
“The malware is downloaded from certain websites. It steals information and sends stolen information to a C2 (command and control) server via an HTTP POST command,” said Tanmay Ganacharya, partner director of security research at Microsoft.
HTTP Post is basically a data request from the internet. It is also used when you’re uploading a file or submitting a completed web form.