General
-
Target
Porno_Izle.apk
-
Size
2.6MB
-
Sample
210810-6kz45v7gzx
-
MD5
757be08495745e8f90e97d33fa946aff
-
SHA1
0a7af3d293c4bc9fa142e714f5be6f774aa0a112
-
SHA256
f808d05653ae38eef70954a583c9cacdf5d43bd28e73e689174d47c73e431da6
-
SHA512
a49c67ea1f2b92f0bd30c699567198033c5e0712474d77674cbed3127429dfe2b5a208b6b35141c91d3eb3360a970992929a28887d38ed90cfd06177af5694a2
Static task
static1
Behavioral task
behavioral1
Sample
Porno_Izle.apk
Resource
android-x64
Malware Config
Extracted
alienbot
http://194.163.136.78
Targets
-
-
Target
Porno_Izle.apk
-
Size
2.6MB
-
MD5
757be08495745e8f90e97d33fa946aff
-
SHA1
0a7af3d293c4bc9fa142e714f5be6f774aa0a112
-
SHA256
f808d05653ae38eef70954a583c9cacdf5d43bd28e73e689174d47c73e431da6
-
SHA512
a49c67ea1f2b92f0bd30c699567198033c5e0712474d77674cbed3127429dfe2b5a208b6b35141c91d3eb3360a970992929a28887d38ed90cfd06177af5694a2
Score10/10-
Alienbot
Alienbot is a fork of Cerberus banker first seen in January 2020.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Reads name of network operator
Uses Android APIs to discover system information.
-