cerberus | 88f353bc941aab7e3ace9f80e8913eabf4b9faea15e3d5c3cca599fa7d6d4ebb | Triage

Sharing

General

Target

Android build_obf(2).apk
Size

3.0MB
Sample

210806-larkcyja5a
MD5

fbdde24b17955a4b562ee84383836835
SHA1

a3d5b0cea61ac3adeb5ce991befd1be799c34295
SHA256

88f353bc941aab7e3ace9f80e8913eabf4b9faea15e3d5c3cca599fa7d6d4ebb
SHA512

53c71f9def0f490e8321a1376e78491a32d34df4aca10bf4c95577f36b763f4fb8eb2edc0bf8370f302c1af1c541ec683bd8854d1b1999e25cf92ba60b09ab3b

Score

10^/10

cerberus android banker evasion infostealer obfuscation rat trojan

Malware Config

Extracted

Family

cerberus

C2

http://144.126.147.6

Targets

- Target
  
  Android build_obf(2).apk
- Size
  
  3.0MB
- MD5
  
  fbdde24b17955a4b562ee84383836835
- SHA1
  
  a3d5b0cea61ac3adeb5ce991befd1be799c34295
- SHA256
  
  88f353bc941aab7e3ace9f80e8913eabf4b9faea15e3d5c3cca599fa7d6d4ebb
- SHA512
  
  53c71f9def0f490e8321a1376e78491a32d34df4aca10bf4c95577f36b763f4fb8eb2edc0bf8370f302c1af1c541ec683bd8854d1b1999e25cf92ba60b09ab3b
Score

10^/10

cerberus banker evasion infostealer obfuscation rat trojan
- Cerberus
  An Android banker that is being rented to actors beginning in 2019.
  banker trojan infostealer evasion rat cerberus
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cerberusbankerevasioninfostealerobfuscationrattrojan

behavioral2

behavioral3

cerberusbankerevasioninfostealerobfuscationrattrojan