Overview

overview

10

Static

static

Android APK

android_x86_64

10

Analysis

  • max time kernel
    3609522s
  • max time network
    133s
  • platform
    android_x86_64
  • resource
    android-x86_64_arm64
  • submitted
    15-04-2021 20:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    29d21cfc5299759a285ffe86ee9edd0cc2883a65edfba30cd738314823926789.apk

  • Size

    3.5MB

  • MD5

    c851a900efcb00d89d683528365788bf

  • SHA1

    eaa9e3487a10d3c5907bdfc2fb2d57e5023957a1

  • SHA256

    29d21cfc5299759a285ffe86ee9edd0cc2883a65edfba30cd738314823926789

  • SHA512

    346c0cb04fee66d700b6d91f862a48a0df33693f1851e4a0031afd075d8d9ecff466d58d613cd84f4cd25826385e1fee1e43e3cce50b1713ab1658efe46a308c

Score
10/10
cerberusbankerevasioninfostealerobfuscationratstealthtrojan

Malware Config

Extracted

Family

cerberus

C2

http://45.153.185.116/

Signatures

  • Cerberus

    An Android banker that is being rented to actors beginning in 2019.

    bankertrojaninfostealerevasionratcerberus
  • Removes its main activity from the application launcher 1 IoCs
    stealthtrojan
  • Checks Android system properties for emulator presence. 1 IoCs
  • Loads dropped Dex/Jar 4 IoCs

    Runs executable file dropped to the device during analysis.

  • Uses reflection 27 IoCs
    obfuscation

Processes

  • project.salute.energy
    1⤵
    • Removes its main activity from the application launcher
    • Checks Android system properties for emulator presence.
    • Loads dropped Dex/Jar
    • Uses reflection
    PID:4690

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads