cerberus | df6be1f67e05ad5cefa8905a2dbb51a8e47790c349502c6b1e0701f2345d0720 | Triage

Submit
Reports

Overview

overview

Static

static

8

Android-Up...1).apk

android_x86

Android-Up...1).apk

android_x64

Android-Up...1).apk

android_x64

Sharing

General

Target

Android-Update (1).apk
Size

3.9MB
Sample

210730-eym2tde95e
MD5

333f95529ca58b782dafd1acdafd29ea
SHA1

12e12ab7bdd439837dd483b8a33d5b75767c085e
SHA256

df6be1f67e05ad5cefa8905a2dbb51a8e47790c349502c6b1e0701f2345d0720
SHA512

82b8b388b120819b478c6d9cd691311ff328acdce7d582abcafeca47e5eea20d2669bc5776082df5c99c1c345b8a063479a6a424e8963fe1923887c98d5b175d

Score

10^/10

cerberus android banker evasion infostealer obfuscation rat suricata trojan

Static task

static1

Behavioral task

behavioral1

Sample

Android-Update (1).apk

Resource

android-x86-arm

cerberus banker evasion infostealer obfuscation rat trojan

android_x86

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Android-Update (1).apk

Resource

android-x64-arm64

android_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

Android-Update (1).apk

Resource

android-x64

cerberus banker evasion infostealer obfuscation rat suricata trojan

android_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  Android-Update (1).apk
- Size
  
  3.9MB
- MD5
  
  333f95529ca58b782dafd1acdafd29ea
- SHA1
  
  12e12ab7bdd439837dd483b8a33d5b75767c085e
- SHA256
  
  df6be1f67e05ad5cefa8905a2dbb51a8e47790c349502c6b1e0701f2345d0720
- SHA512
  
  82b8b388b120819b478c6d9cd691311ff328acdce7d582abcafeca47e5eea20d2669bc5776082df5c99c1c345b8a063479a6a424e8963fe1923887c98d5b175d
Score

10^/10

cerberus banker evasion infostealer obfuscation rat trojan suricata
- Cerberus
  An Android banker that is being rented to actors beginning in 2019.
  banker trojan infostealer evasion rat cerberus
- suricata: ET MALWARE Trojan Generic - POST To gate.php with no referer
  suricata
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Requests enabling of the accessibility settings.
- Reads name of network operator
  Uses Android APIs to discover system information.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cerberusbankerevasioninfostealerobfuscationrattrojan

behavioral2

behavioral3

cerberusbankerevasioninfostealerobfuscationratsuricatatrojan

© 2018-2024

Terms | Privacy