Overview

overview

10

Static

static

Android APK

android_x86_64

10

Analysis

  • max time kernel
    3602455s
  • max time network
    22s
  • platform
    android_x86_64
  • resource
    android-x86_64
  • submitted
    15-04-2021 18:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ec4d56312a968b0077f1110a549ea0e793eb1ad2d33bfb8da7724adfed9e6492.apk

  • Size

    3.4MB

  • MD5

    2d35c890c67e816af1a06309b434591b

  • SHA1

    5b15735f0118c6b15fb9acf80c27f195f4da8139

  • SHA256

    ec4d56312a968b0077f1110a549ea0e793eb1ad2d33bfb8da7724adfed9e6492

  • SHA512

    c0e1594912e5ca72375e79decfe7d11df4d535de314d760736884102449aa9b7a371249642ae8314d8989023dc56b40dddfc030f684ff052d111906fe401e995

Score
10/10
cerberusbankerevasioninfostealerobfuscationratstealthtrojan

Malware Config

Extracted

Family

cerberus

C2

http://141.105.65.90/

Signatures

  • Cerberus

    An Android banker that is being rented to actors beginning in 2019.

    bankertrojaninfostealerevasionratcerberus
  • Removes its main activity from the application launcher 1 IoCs
    stealthtrojan
  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

  • Tries to add a device administrator. 1 IoCs
  • Uses reflection 27 IoCs
    obfuscation

Processes

  • pigeon.zero.strike
    1⤵
    • Removes its main activity from the application launcher
    • Loads dropped Dex/Jar
    • Tries to add a device administrator.
    • Uses reflection
    PID:3613

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads