Zanubis, an Android banking trojan, is posing as a Peruvian government app to deceive users into installing the malware. It targets the Latin American region, particularly Peru, and has been observed impersonating the Peruvian customs and tax agency. Once installed, Zanubis abuses accessibility permissions to display fake screens over legitimate apps and steal credentials. It can also harvest contact data and system metadata. What sets Zanubis apart is its ability to pretend to be an Android OS update, rendering the device unusable. Another Android-based remote access trojan called MMRat has also been identified, capable of capturing user input and screen content. RATs are popular among hackers due to their wide range of capabilities.
Source link
