alienbot | 843581f108479facdb006864b3c4a6fee298afde4457be2552027c41705677bb | Triage

Submit
Reports

Overview

overview

Static

static

Android APK

android_x86_64

Sharing

General

Target

Chrome3.17.9.apk
Size

2.9MB
Sample

210317-ahxdkqp7wa
MD5

d9472b8d8b905f32470649ebbed6cd60
SHA1

40352c91b77cb662f03bae4793bb5da135fbfce3
SHA256

843581f108479facdb006864b3c4a6fee298afde4457be2552027c41705677bb
SHA512

86af6c8dbddfd9f5948c14e7725d86e4b6bcc2c650f9bdfa0fbee9c5b6b658945c7d82fc709c70792c0ae7b360486fd9c80cf80d7dc768c48503fbda4a9688ec

Score

10^/10

alienbot android banker infostealer obfuscation stealth trojan

Static task

static1

Behavioral task

behavioral1

Sample

Chrome3.17.9.apk

Resource

android-x86_64

alienbot banker infostealer obfuscation stealth trojan

android_x86_64

0 signatures

0 seconds

Malware Config

Extracted

Family

alienbot

C2

http://suffoopp.ga

Targets

- Target
  
  Chrome3.17.9.apk
- Size
  
  2.9MB
- MD5
  
  d9472b8d8b905f32470649ebbed6cd60
- SHA1
  
  40352c91b77cb662f03bae4793bb5da135fbfce3
- SHA256
  
  843581f108479facdb006864b3c4a6fee298afde4457be2552027c41705677bb
- SHA512
  
  86af6c8dbddfd9f5948c14e7725d86e4b6bcc2c650f9bdfa0fbee9c5b6b658945c7d82fc709c70792c0ae7b360486fd9c80cf80d7dc768c48503fbda4a9688ec
Score

10^/10

alienbot banker infostealer obfuscation stealth trojan
- Alienbot
  Alienbot is a fork of Cerberus banker first seen in January 2020.
  banker trojan infostealer alienbot
- Removes its main activity from the application launcher
  stealth trojan
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

alienbotbankerinfostealerobfuscationstealthtrojan

© 2018-2024

Terms | Privacy