Analysis
-
max time kernel
1612718s -
max time network
34s -
platform
android_x64 -
resource
android-x64 -
submitted
19-08-2021 20:35
Static task
static1
Behavioral task
behavioral1
Sample
Chrome505543.apk
Resource
android-x64
0 signatures
0 seconds
General
-
Target
Chrome505543.apk
-
Size
3.9MB
-
MD5
73f666b3dc5ee66e202b3e365a524d5d
-
SHA1
3195a268d5fe4c181cf4178322afe629b03f1064
-
SHA256
00c462f5b13e3bf21cc7b913719188644fac34cfb7a80893d551bbf512bb8570
-
SHA512
5abd49342885a144ae0284cd258fd3ba2a8311b6c932e2fe5619dc89e3947f9c7478978d44c836c4348f17d73f51c9ce4516d2dc204e9b93d800720d1cb9217c
Score
10/10
Malware Config
Extracted
Family
alienbot
C2
http://a05qdzfe6qa1.xyz
Signatures
-
Alienbot
Alienbot is a fork of Cerberus banker first seen in January 2020.
-
Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.
ioc pid Process /data/user/0/there.discovery.excitement/app_DynamicOptDex/dEVDuX.json 3608 there.discovery.excitement