General

  • Target

    a92cc791f8e9f6cd619ce76033a62c10e8954310e8791b5fa581a806b8ab898c.apk

  • Size

    281KB

  • Sample

    210830-xggf1vkvgj

  • MD5

    0da3fc66004320774a0ff35d239b3aca

  • SHA1

    6c514307ee8791903f48938983bfafb616fa8a88

  • SHA256

    a92cc791f8e9f6cd619ce76033a62c10e8954310e8791b5fa581a806b8ab898c

  • SHA512

    1460f012d213002407622032a8dd36c98a6bacfd5194bc5d0d0b4f5dbdb98acab06696fd6e4d4147d784cab8924d55df7eaeb3134b0042572b2985361ea6840c

Malware Config

Extracted

Family

alienbot

C2

http://abindizzobremin.tk

Targets

    • Target

      a92cc791f8e9f6cd619ce76033a62c10e8954310e8791b5fa581a806b8ab898c.apk

    • Size

      281KB

    • MD5

      0da3fc66004320774a0ff35d239b3aca

    • SHA1

      6c514307ee8791903f48938983bfafb616fa8a88

    • SHA256

      a92cc791f8e9f6cd619ce76033a62c10e8954310e8791b5fa581a806b8ab898c

    • SHA512

      1460f012d213002407622032a8dd36c98a6bacfd5194bc5d0d0b4f5dbdb98acab06696fd6e4d4147d784cab8924d55df7eaeb3134b0042572b2985361ea6840c

    • Alienbot

      Alienbot is a fork of Cerberus banker first seen in January 2020.

    • Reads name of network operator

      Uses Android APIs to discover system information.

MITRE ATT&CK Matrix

Tasks