Overview

overview

10

Static

static

8

EBABasvuruFormu.apk

android_x86

10

EBABasvuruFormu.apk

android_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    EBABasvuruFormu.apk

  • Size

    3.7MB

  • Sample

    210723-y4gqy63kjx

  • MD5

    5db1cf619b24ec1e23b418afa4454c38

  • SHA1

    27104c728d0bd4a3a32bae5d9a9e00c3e870bf53

  • SHA256

    fdd443ec3e1ad5032ba6ae8ad2092ce161a30b6d3d76adfad989e30a923f16f0

  • SHA512

    c4bda940ea81eaabb41cdbc96fda6d5c7c36d6d8fbcb2711e62ba8b7f90b43fc254114293d99d2414d56a560b2f7340dff37e588f6d802a19eb1f09ce31d0f35

Score
10/10
alienbotandroidbankerinfostealerobfuscationtrojan

Malware Config

Targets

    • Target

      EBABasvuruFormu.apk

    • Size

      3.7MB

    • MD5

      5db1cf619b24ec1e23b418afa4454c38

    • SHA1

      27104c728d0bd4a3a32bae5d9a9e00c3e870bf53

    • SHA256

      fdd443ec3e1ad5032ba6ae8ad2092ce161a30b6d3d76adfad989e30a923f16f0

    • SHA512

      c4bda940ea81eaabb41cdbc96fda6d5c7c36d6d8fbcb2711e62ba8b7f90b43fc254114293d99d2414d56a560b2f7340dff37e588f6d802a19eb1f09ce31d0f35

    Score
    10/10
    alienbotbankerinfostealerobfuscationtrojan

    • Alienbot

      Alienbot is a fork of Cerberus banker first seen in January 2020.

      bankertrojaninfostealeralienbot

    • Checks Android system properties for emulator presence.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Requests enabling of the accessibility settings.

    • Reads name of network operator

      Uses Android APIs to discover system information.

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks