Overview

overview

10

Static

static

7

98338c83e7...b4.apk

android_x86

98338c83e7...b4.apk

android_x64

10

98338c83e7...b4.apk

android_x64

Analysis

  • max time kernel
    3014206s
  • max time network
    192s
  • platform
    android_x64
  • resource
    android-x64
  • submitted
    01-02-2022 04:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    98338c83e7e89c0f913de151ffa6219504116561328a1bbede46f78d910137b4.apk

  • Size

    1.3MB

  • MD5

    0b36daf30cb8c83da3916ef1123f0011

  • SHA1

    07bc566eb38294c3e3f1589cd9fb645ee63823f1

  • SHA256

    98338c83e7e89c0f913de151ffa6219504116561328a1bbede46f78d910137b4

  • SHA512

    144d76ef903f8e6fef154832f0a81c5b271c29c55bed12a8f7007b96cbf94091168c58e37ebf62adc8fa52bcf374e81ae3aae68e32921e3bdaf70560ecf86a05

Score
10/10
alienbotbankerinfostealertrojan

Malware Config

Extracted

Family

alienbot

C2

http://zeusland.uno

Signatures

  • Alienbot

    Alienbot is a fork of Cerberus banker first seen in January 2020.

    bankertrojaninfostealeralienbot
  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • ghitqsbqzj.qxdaxadl.gndxtjzhhbgyalpguqopyu
    1⤵
    • Loads dropped Dex/Jar
    PID:3848
    • ghitqsbqzj.qxdaxadl.gndxtjzhhbgyalpguqopyu
      2⤵
        PID:3921
      • getprop
        2⤵
          PID:3921
        • ghitqsbqzj.qxdaxadl.gndxtjzhhbgyalpguqopyu
          2⤵
            PID:3979
          • getprop
            2⤵
              PID:3979

          Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/user/0/ghitqsbqzj.qxdaxadl.gndxtjzhhbgyalpguqopyu/app_DynamicOptDex/DkCG.json
            MD5

            2a826e6aded45e2b3e75b76e6c05d39c

            SHA1

            118a9df8b29452b2855ef7ded3e7814454e6c4ac

            SHA256

            a731506498621f42d219e975c39cceb7611dbce59d43e47762431f5eb178a843

            SHA512

            eb3b6821ab105ece72a527d68da0ca48bbecd5f7e2b865cffdabe54aed6cc55d990594eb7390fb574cbf8abcbbcb04b791b1a0954853fec152fb3713ae06aa28

            Download Submit

          • /data/user/0/ghitqsbqzj.qxdaxadl.gndxtjzhhbgyalpguqopyu/app_DynamicOptDex/DkCG.json
            MD5

            2a826e6aded45e2b3e75b76e6c05d39c

            SHA1

            118a9df8b29452b2855ef7ded3e7814454e6c4ac

            SHA256

            a731506498621f42d219e975c39cceb7611dbce59d43e47762431f5eb178a843

            SHA512

            eb3b6821ab105ece72a527d68da0ca48bbecd5f7e2b865cffdabe54aed6cc55d990594eb7390fb574cbf8abcbbcb04b791b1a0954853fec152fb3713ae06aa28

            Download Submit