General

  • Target

    d5e9c1f9154c9724cb13329fb8eb151d3884d86cf8dccf46976d555bd85f14d5.apk

  • Size

    3.1MB

  • Sample

    210824-ftd79w3sbn

  • MD5

    aecd4b98640d326bb9eab3c9fa3b1be8

  • SHA1

    5335a44f0d2aee8f4074e0970063ee4804d9d063

  • SHA256

    d5e9c1f9154c9724cb13329fb8eb151d3884d86cf8dccf46976d555bd85f14d5

  • SHA512

    0e4698134bca955afee958470779d52b260a8ca4112f8bf75c7d17623e6d124fd117542734806a04dbe78ce86844b947d7e44629dee1d3ffd59ec86145ddaae5

Malware Config

Extracted

Family

alienbot

C2

http://sillldkisteaqq.com

Targets

    • Target

      d5e9c1f9154c9724cb13329fb8eb151d3884d86cf8dccf46976d555bd85f14d5.apk

    • Size

      3.1MB

    • MD5

      aecd4b98640d326bb9eab3c9fa3b1be8

    • SHA1

      5335a44f0d2aee8f4074e0970063ee4804d9d063

    • SHA256

      d5e9c1f9154c9724cb13329fb8eb151d3884d86cf8dccf46976d555bd85f14d5

    • SHA512

      0e4698134bca955afee958470779d52b260a8ca4112f8bf75c7d17623e6d124fd117542734806a04dbe78ce86844b947d7e44629dee1d3ffd59ec86145ddaae5

    • Alienbot

      Alienbot is a fork of Cerberus banker first seen in January 2020.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

MITRE ATT&CK Matrix

Tasks