General

  • Target

    a2d46ffac61268461dcde8c87e35667ff4a9739f0ffc73b627d69b5ce9029b37.apk

  • Size

    2.9MB

  • Sample

    210830-yn9psd5gxj

  • MD5

    ada647665d1862de1ccc04f848e3dbab

  • SHA1

    68583f438f40cffa976648afec02049229432aba

  • SHA256

    a2d46ffac61268461dcde8c87e35667ff4a9739f0ffc73b627d69b5ce9029b37

  • SHA512

    85d14bfe2143f30d4d56bf332515e18418b1072479051f759d45a8aa6f75587812c2606296f4d5387e87e37dbdaa44d42df1a6737ba06053a1497b65c291d471

Malware Config

Extracted

Family

alienbot

C2

http://afdefgof.net

Targets

    • Target

      a2d46ffac61268461dcde8c87e35667ff4a9739f0ffc73b627d69b5ce9029b37.apk

    • Size

      2.9MB

    • MD5

      ada647665d1862de1ccc04f848e3dbab

    • SHA1

      68583f438f40cffa976648afec02049229432aba

    • SHA256

      a2d46ffac61268461dcde8c87e35667ff4a9739f0ffc73b627d69b5ce9029b37

    • SHA512

      85d14bfe2143f30d4d56bf332515e18418b1072479051f759d45a8aa6f75587812c2606296f4d5387e87e37dbdaa44d42df1a6737ba06053a1497b65c291d471

    • Alienbot

      Alienbot is a fork of Cerberus banker first seen in January 2020.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Requests enabling of the accessibility settings.

MITRE ATT&CK Matrix

Tasks