alienbot | 2ca0aec897795e2e06e561b695b1ac2c796eba4fb6d0bcde4ed33611708103e2 | Triage

Submit
Reports

Overview

overview

Static

static

Android APK

android_x86_64

Sharing

General

Target

Chrome3.17.16.apk
Size

3.0MB
Sample

210317-878gztvsqe
MD5

e103b6704c3275ba7887707908f9788d
SHA1

4a83e31bb312631a038c1e0e0b441c905af0c2bc
SHA256

2ca0aec897795e2e06e561b695b1ac2c796eba4fb6d0bcde4ed33611708103e2
SHA512

c0ad04b937ac1f932b8aac84f90aeb9a5580421ef4dd1ac77370bc72267fa79bd4bcc4cee5e1cf2f6901fdac6cf661649a7e92eb856e0d61598e4cc69c324835

Score

10^/10

alienbot android banker infostealer obfuscation stealth trojan

Static task

static1

Behavioral task

behavioral1

Sample

Chrome3.17.16.apk

Resource

android-x86_64_arm64

alienbot banker infostealer obfuscation stealth trojan

android_x86_64

0 signatures

0 seconds

Malware Config

Extracted

Family

alienbot

C2

http://suffoopp.ga

Targets

- Target
  
  Chrome3.17.16.apk
- Size
  
  3.0MB
- MD5
  
  e103b6704c3275ba7887707908f9788d
- SHA1
  
  4a83e31bb312631a038c1e0e0b441c905af0c2bc
- SHA256
  
  2ca0aec897795e2e06e561b695b1ac2c796eba4fb6d0bcde4ed33611708103e2
- SHA512
  
  c0ad04b937ac1f932b8aac84f90aeb9a5580421ef4dd1ac77370bc72267fa79bd4bcc4cee5e1cf2f6901fdac6cf661649a7e92eb856e0d61598e4cc69c324835
Score

10^/10

alienbot banker infostealer obfuscation stealth trojan
- Alienbot
  Alienbot is a fork of Cerberus banker first seen in January 2020.
  banker trojan infostealer alienbot
- Removes its main activity from the application launcher
  stealth trojan
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

alienbotbankerinfostealerobfuscationstealthtrojan

© 2018-2024

Terms | Privacy