alienbot | d229a9f0a2f6c585ebec74f66a1fb67d97dee870a593b039f9fa7fae7e717220 | Triage

Submit
Reports

Overview

overview

Static

static

7

d229a9f0a2...in.apk

android_x64

Sharing

General

Target

d229a9f0a2f6c585ebec74f66a1fb67d97dee870a593b039f9fa7fae7e717220.bin
Size

3.0MB
Sample

211014-qjr5fshfb3
MD5

4f3228f7fca60edcbdd457755ca19923
SHA1

80550425cad465624c30757521ca371ae78906a3
SHA256

d229a9f0a2f6c585ebec74f66a1fb67d97dee870a593b039f9fa7fae7e717220
SHA512

8d4c3bd6d720cdc23e68c9d3c6de740b31d3986b4c4533cf27cdbdc978dba7cbf36fa0ee1754467a8db9a83120a4d404fd4ef6d7ba8a77e624d8730c6cf9317f

Score

10^/10

alienbot android banker evasion infostealer obfuscation trojan

Static task

static1

Behavioral task

behavioral1

Sample

d229a9f0a2f6c585ebec74f66a1fb67d97dee870a593b039f9fa7fae7e717220.bin.apk

Resource

android-x64

alienbot banker evasion infostealer obfuscation trojan

android_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

alienbot

C2

http://tralakapot.digital

Targets

- Target
  
  d229a9f0a2f6c585ebec74f66a1fb67d97dee870a593b039f9fa7fae7e717220.bin
- Size
  
  3.0MB
- MD5
  
  4f3228f7fca60edcbdd457755ca19923
- SHA1
  
  80550425cad465624c30757521ca371ae78906a3
- SHA256
  
  d229a9f0a2f6c585ebec74f66a1fb67d97dee870a593b039f9fa7fae7e717220
- SHA512
  
  8d4c3bd6d720cdc23e68c9d3c6de740b31d3986b4c4533cf27cdbdc978dba7cbf36fa0ee1754467a8db9a83120a4d404fd4ef6d7ba8a77e624d8730c6cf9317f
Score

10^/10

alienbot banker evasion infostealer obfuscation trojan
- Alienbot
  Alienbot is a fork of Cerberus banker first seen in January 2020.
  banker trojan infostealer alienbot
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Requests disabling of battery optimizations (often used to enable hiding in the background).
  evasion
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

alienbotbankerevasioninfostealerobfuscationtrojan

© 2018-2024

Terms | Privacy