Overview

overview

10

Static

static

Android APK

android_x86_64

10

Analysis

  • max time kernel
    1621565s
  • max time network
    151s
  • platform
    android_x86_64
  • resource
    android-x86_64_arm64
  • submitted
    23-03-2021 19:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    multimedya.apk

  • Size

    3.6MB

  • MD5

    7705b51ef8baa14f13f859bb09aba804

  • SHA1

    67549a4d4a7b16f0077806c608a101eca70852c1

  • SHA256

    ecc74f5b1b1b8003108e333654b81f43f8ed51e37e219d576c391cb85b4f546d

  • SHA512

    a0319e249e974ebfc635db76036db9cacb75e460a924ed6da52fc5cb51ace9a0bd299c6830ed5b4fb5b1cbe3496142823ab4cdd60bd42c34938e7d8211cee1f3

Score
10/10
alienbotbankerinfostealerobfuscationstealthtrojan

Malware Config

Extracted

Family

alienbot

C2

http://eksilmezlernokta3.club

Signatures

  • Alienbot

    Alienbot is a fork of Cerberus banker first seen in January 2020.

    bankertrojaninfostealeralienbot
  • Removes its main activity from the application launcher 1 IoCs
    stealthtrojan
  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

  • Uses reflection 33 IoCs
    obfuscation
  • 64 IoCs

Processes

  • swarm.hedgehog.early
    1⤵
    • Removes its main activity from the application launcher
    • Loads dropped Dex/Jar
    • Uses reflection
    PID:4559

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads