alienbot | 687772ba3c9ac06d30e66bba7b8c808718dbb7a4ec68d4c6cfa02017c3fa88f9 | Triage

Submit
Reports

Overview

overview

Static

static

7

687772ba3c...f9.apk

android_x64

Sharing

General

Target

687772ba3c9ac06d30e66bba7b8c808718dbb7a4ec68d4c6cfa02017c3fa88f9.apk
Size

2.7MB
Sample

211015-kz6pwsbdhq
MD5

41d58327b744b99a74dd542b92f86a0d
SHA1

e80a6406f23cfb6e58e045fa79fcab728e336469
SHA256

687772ba3c9ac06d30e66bba7b8c808718dbb7a4ec68d4c6cfa02017c3fa88f9
SHA512

c74df5fd7089b68776383541ccf1450b841707b49b26034ac798ced56bb01cba6dfffb8a9e8dce329af6a1f206a58c42aac366b797db82b9778ee953bb16f60a

Score

10^/10

alienbot android banker infostealer obfuscation trojan

Static task

static1

Behavioral task

behavioral1

Sample

687772ba3c9ac06d30e66bba7b8c808718dbb7a4ec68d4c6cfa02017c3fa88f9.apk

Resource

android-x64

alienbot banker infostealer obfuscation trojan

android_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

alienbot

C2

http://flpaowulouriaos.ml

Targets

- Target
  
  687772ba3c9ac06d30e66bba7b8c808718dbb7a4ec68d4c6cfa02017c3fa88f9.apk
- Size
  
  2.7MB
- MD5
  
  41d58327b744b99a74dd542b92f86a0d
- SHA1
  
  e80a6406f23cfb6e58e045fa79fcab728e336469
- SHA256
  
  687772ba3c9ac06d30e66bba7b8c808718dbb7a4ec68d4c6cfa02017c3fa88f9
- SHA512
  
  c74df5fd7089b68776383541ccf1450b841707b49b26034ac798ced56bb01cba6dfffb8a9e8dce329af6a1f206a58c42aac366b797db82b9778ee953bb16f60a
Score

10^/10

alienbot banker infostealer obfuscation trojan
- Alienbot
  Alienbot is a fork of Cerberus banker first seen in January 2020.
  banker trojan infostealer alienbot
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

alienbotbankerinfostealerobfuscationtrojan

© 2018-2024

Terms | Privacy