Overview

overview

10

Static

static

8

VideoPlayer (1).apk

android_x86

10

VideoPlayer (1).apk

android_x64

10

VideoPlayer (1).apk

android_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    VideoPlayer (1).apk

  • Size

    3.8MB

  • Sample

    210726-vey6fy6fxa

  • MD5

    6b133e65b3bf8e3b7c85a658043a1d6f

  • SHA1

    70f72f3723cc227458c5b01e88409b5232262e66

  • SHA256

    33465f140511880e14cae90185583c73d6897aaf2f8596db49da412a5c002854

  • SHA512

    65850bcd45f0f9d5b09ac5847c0daa2f07b3b4dce192dfd0a035dfa7d4d6b1ed23bac6b432f6db84ee9a095cd0270c49bfd5350181d556bcf68f44a08cb6818b

Score
10/10
alienbotandroidbankerinfostealerobfuscationtrojan

Malware Config

Targets

    • Target

      VideoPlayer (1).apk

    • Size

      3.8MB

    • MD5

      6b133e65b3bf8e3b7c85a658043a1d6f

    • SHA1

      70f72f3723cc227458c5b01e88409b5232262e66

    • SHA256

      33465f140511880e14cae90185583c73d6897aaf2f8596db49da412a5c002854

    • SHA512

      65850bcd45f0f9d5b09ac5847c0daa2f07b3b4dce192dfd0a035dfa7d4d6b1ed23bac6b432f6db84ee9a095cd0270c49bfd5350181d556bcf68f44a08cb6818b

    Score
    10/10
    alienbotbankerinfostealerobfuscationtrojan

    • Alienbot

      Alienbot is a fork of Cerberus banker first seen in January 2020.

      bankertrojaninfostealeralienbot

    • Checks Android system properties for emulator presence.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Requests enabling of the accessibility settings.

    • Reads name of network operator

      Uses Android APIs to discover system information.

    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks