General
-
Target
Chrome3.17.19.apk
-
Size
3.0MB
-
Sample
210317-przhvgts12
-
MD5
3422a781510d467dfe92315f4b49139b
-
SHA1
cad432250c8a48bc6ccf829147314c07680f6f0d
-
SHA256
9b0011e6b494b7d29de84a677c7d199dd0c8baa091062d96267b6121a53fca1f
-
SHA512
2eb27b7e65d1a546b979b37f922710adfc9073acacf17e99ec2855e1bcd32723514badd6288250fea23bbdc6b84e26fa7c6e8ac16fccda9838772220e71ee61b
Malware Config
Extracted
alienbot
http://suffoopp.ga
Targets
-
-
Target
Chrome3.17.19.apk
-
Size
3.0MB
-
MD5
3422a781510d467dfe92315f4b49139b
-
SHA1
cad432250c8a48bc6ccf829147314c07680f6f0d
-
SHA256
9b0011e6b494b7d29de84a677c7d199dd0c8baa091062d96267b6121a53fca1f
-
SHA512
2eb27b7e65d1a546b979b37f922710adfc9073acacf17e99ec2855e1bcd32723514badd6288250fea23bbdc6b84e26fa7c6e8ac16fccda9838772220e71ee61b
Score10/10-
Alienbot
Alienbot is a fork of Cerberus banker first seen in January 2020.
-
Removes its main activity from the application launcher
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-