cerberus | 54ea75fe9217ebdfafea899fbadd80f89c6ccd95db796963e9ba9868abc260b7 | Triage

Sharing

General

Target

YERLİ_UCRETSİZ_GİZLİ_ÇEKİM_PORNO_VİDEOLAR_obf.apk
Size

3.1MB
Sample

210807-96hwgnrh4j
MD5

4a6c95dec7014fb943e7309d8bb64857
SHA1

feef4caba46f6e14c6dca927cb002896760060fb
SHA256

54ea75fe9217ebdfafea899fbadd80f89c6ccd95db796963e9ba9868abc260b7
SHA512

73c5b595f4c7c3f0290abcba7014fd94d45b8e2ac8e05f97ec38978c041c195d4b7fefbb1190fd3efe4f5ede105a4293848b0e9117080aeb4bee27383b1f509a

Score

10^/10

cerberus android banker evasion infostealer obfuscation rat trojan

Malware Config

Extracted

Family

cerberus

C2

http://194.163.159.65

Targets

- Target
  
  YERLİ_UCRETSİZ_GİZLİ_ÇEKİM_PORNO_VİDEOLAR_obf.apk
- Size
  
  3.1MB
- MD5
  
  4a6c95dec7014fb943e7309d8bb64857
- SHA1
  
  feef4caba46f6e14c6dca927cb002896760060fb
- SHA256
  
  54ea75fe9217ebdfafea899fbadd80f89c6ccd95db796963e9ba9868abc260b7
- SHA512
  
  73c5b595f4c7c3f0290abcba7014fd94d45b8e2ac8e05f97ec38978c041c195d4b7fefbb1190fd3efe4f5ede105a4293848b0e9117080aeb4bee27383b1f509a
Score

10^/10

cerberus banker evasion infostealer obfuscation rat trojan
- Cerberus
  An Android banker that is being rented to actors beginning in 2019.
  banker trojan infostealer evasion rat cerberus
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cerberusbankerevasioninfostealerobfuscationrattrojan

behavioral2

behavioral3

cerberusbankerevasioninfostealerobfuscationrattrojan