alienbot | 103073604235e9e047abead5f497b5079e3a813f1aa036f5c6cb987c01ec421b | Triage

Submit
Reports

Overview

overview

Static

static

Android APK

android_x86_64

Sharing

General

Target

Fibabanka_Destek_obf.apk
Size

2.7MB
Sample

201208-aerdwxnxra
MD5

6073f077566eae176783153d604c018f
SHA1

fc94034f137032576e4cec1b79fa34c0f2cc3ab5
SHA256

103073604235e9e047abead5f497b5079e3a813f1aa036f5c6cb987c01ec421b
SHA512

3ac90c4ebb356a42f475b6f4f431050fbc4f3f1a199fa54a2b1aa4845a3f433c6e012220b2c6cf6e8d4cb574ebacd8e8d3d93d3a801be224e1df0c210121c91e

Score

10^/10

alienbot android banker infostealer obfuscation stealth trojan

Static task

static1

Behavioral task

behavioral1

Sample

Fibabanka_Destek_obf.apk

Resource

android-x86_64

alienbot banker infostealer obfuscation stealth trojan

android_x86_64

0 signatures

0 seconds

Malware Config

Extracted

Family

alienbot

C2

http://turkasker12.net

Targets

- Target
  
  Fibabanka_Destek_obf.apk
- Size
  
  2.7MB
- MD5
  
  6073f077566eae176783153d604c018f
- SHA1
  
  fc94034f137032576e4cec1b79fa34c0f2cc3ab5
- SHA256
  
  103073604235e9e047abead5f497b5079e3a813f1aa036f5c6cb987c01ec421b
- SHA512
  
  3ac90c4ebb356a42f475b6f4f431050fbc4f3f1a199fa54a2b1aa4845a3f433c6e012220b2c6cf6e8d4cb574ebacd8e8d3d93d3a801be224e1df0c210121c91e
Score

10^/10

alienbot banker infostealer obfuscation stealth trojan
- Alienbot
  Alienbot is a fork of Cerberus banker first seen in January 2020.
  banker trojan infostealer alienbot
- Removes its main activity from the application launcher
  stealth trojan
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

alienbotbankerinfostealerobfuscationstealthtrojan

© 2018-2024

Terms | Privacy