Overview

overview

10

Static

static

8

HD_Porno.apk

android_x86

10

HD_Porno.apk

android_x64

HD_Porno.apk

android_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    HD_Porno.apk

  • Size

    2.6MB

  • Sample

    210809-gccvmzrdyx

  • MD5

    7e87c606691e37752109a2a875d769b6

  • SHA1

    43ad4cd3b8048ed5f2ae22e70a7f87e29a7203f5

  • SHA256

    d6ac0a16bd4b8733fd7de7d437902a224a54a956b7bf880862138eb9694efa44

  • SHA512

    497c7671754c2cb4c49c5d43aac29f6c9fd2c4296db26a02cc61071c9f2f2477ad58a9583f4772ff84697a0c17e55a24b606191bb6956135f2c6c0fdd3c85e93

Score
10/10
cerberusandroidbankerevasioninfostealerobfuscationrattrojan

Malware Config

Extracted

Family

cerberus

C2

http://blackhatrussian.xyz

Targets

    • Target

      HD_Porno.apk

    • Size

      2.6MB

    • MD5

      7e87c606691e37752109a2a875d769b6

    • SHA1

      43ad4cd3b8048ed5f2ae22e70a7f87e29a7203f5

    • SHA256

      d6ac0a16bd4b8733fd7de7d437902a224a54a956b7bf880862138eb9694efa44

    • SHA512

      497c7671754c2cb4c49c5d43aac29f6c9fd2c4296db26a02cc61071c9f2f2477ad58a9583f4772ff84697a0c17e55a24b606191bb6956135f2c6c0fdd3c85e93

    Score
    10/10
    cerberusbankerevasioninfostealerobfuscationrattrojan

    • Cerberus

      An Android banker that is being rented to actors beginning in 2019.

      bankertrojaninfostealerevasionratcerberus

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Requests enabling of the accessibility settings.

    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks