New version of Cerberus targets Spanish and Latin American entities

At the beginning of September there were new samples of the Android 'Cerberus' banking Trojan detected. This banking malware has been gaining popularity little by little since its launch in June 2019.

Its developers do not distribute the samples directly to infect victims. Rather, they sell the Trojan in an 'underground' forum and it is their customers who, through an automated tool, build the malicious APK that they will distribute to their victims. This is why not all samples affect the same entities, as it depends on each buyer’s objective.

Trojan developers have even created a Twitter account (Android Cerberus), in which they publish the new features included in the new versions and even joke with the best-known malware analysts in the community.

The increase in its popularity has led to the presence of Spanish and Latin American banking entities among the new samples detected at the beginning of September, for the first time. In past versions, French and Japanese entities had been discovered.

If you are interested you can download full report.:


New version of the Cerberus banking Trojan targets Spanish and Latin American entities


The samples arrived through our automatic malware analysis systems, and the propagation vectors used by the criminals could not be found in the study made.

Probably, as usual with this type of malware, the distribution of the malicious APK was effected through fraudulent web pages.


Posted by David García

In his more than 9-year professional career, he has been involved in multiple projects, the most important being in the fields of managed security, anti-fraud and ethical hacking services, and malware analysis. He has contributed his know-how and security-related improvements to a wide variety of fraud and vulnerability analysis products. He currently oversees the smooth running of our different products and researches current fraud developments in order to showcase buguroo overseas as well as providing the development department with feedback on the latest malware and cybercriminal trends.



buguroo’s cloud-based fraud detection delivers a straightforward solution for detecting and stopping today’s – and tomorrow’s malware threats. Banks and their customers can be protected from one of the most malicious threats in use by cybercriminals.


Solicita una demo

Would you like to know how our solution protects your bank?

Check how our solution can help you to resolve your company's online fraud issues by requesting a free DEMO and we explain it to you in detail.

Watch video

Did you like it? Share in your social communities.