Overview

overview

10

Static

static

Android APK

android_x86

10

Analysis

  • max time kernel
    4008022s
  • max time network
    54s
  • platform
    android_x86
  • resource
    android-x86_arm
  • submitted
    20-04-2021 10:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Sistem_Guncelleme_LM-W-10.07.00.apk

  • Size

    2.9MB

  • MD5

    f858496a35f97e6f6e348bdd9c0d6705

  • SHA1

    207b2bd869656b0a02b2897b62eaa82954632ed3

  • SHA256

    044254df954c15ec2931105d863bb4f84c5fa470a49807775d9b5321b30cde6c

  • SHA512

    6385b377ac0edd42399e27564273addee043a018046c8ab97b2104879a08965cd6ebbc09f21b9814af1228f2049a45a1d7b14c6de630d01168c23862bef0ea47

Score
10/10
cerberusbankerevasioninfostealerobfuscationratstealthtrojan

Malware Config

Extracted

Family

cerberus

C2

http://45.153.185.116/

Signatures

  • Cerberus

    An Android banker that is being rented to actors beginning in 2019.

    bankertrojaninfostealerevasionratcerberus
  • Removes its main activity from the application launcher 1 IoCs
    stealthtrojan
  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

  • Uses reflection 27 IoCs
    obfuscation

Processes

  • ocean.quantum.leave
    1⤵
    • Removes its main activity from the application launcher
    • Loads dropped Dex/Jar
    • Uses reflection
    PID:4617

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads