Overview

overview

10

Static

static

7

34be7f1675...78.apk

android_x86

10

34be7f1675...78.apk

android_x64

10

34be7f1675...78.apk

android_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    34be7f167509a674e47ff84f80cb97b406f595ec4d08102cfeeb351632e84378

  • Size

    300KB

  • Sample

    220205-vklfhsdec6

  • MD5

    b50672205ed2763ba6816093c2a3676e

  • SHA1

    25ae730c962ff32c06f853cd4bf0081041a29ce2

  • SHA256

    34be7f167509a674e47ff84f80cb97b406f595ec4d08102cfeeb351632e84378

  • SHA512

    0afd47fa337bd205795081517554d8be47bfd270f6965ecd8c810cf66a737be8eb3b226929d64f17695053cefeb54d250670bad9631fcb7eb8597e456964407d

Score
10/10
alienbotandroidbankerinfostealertrojan

Malware Config

Extracted

Family

alienbot

C2

http://optimpres.xyz/

Targets

    • Target

      34be7f167509a674e47ff84f80cb97b406f595ec4d08102cfeeb351632e84378

    • Size

      300KB

    • MD5

      b50672205ed2763ba6816093c2a3676e

    • SHA1

      25ae730c962ff32c06f853cd4bf0081041a29ce2

    • SHA256

      34be7f167509a674e47ff84f80cb97b406f595ec4d08102cfeeb351632e84378

    • SHA512

      0afd47fa337bd205795081517554d8be47bfd270f6965ecd8c810cf66a737be8eb3b226929d64f17695053cefeb54d250670bad9631fcb7eb8597e456964407d

    Score
    10/10
    alienbotbankerinfostealertrojan

    • Alienbot

      Alienbot is a fork of Cerberus banker first seen in January 2020.

      bankertrojaninfostealeralienbot

    • Makes use of the framework's Accessibility service.

    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks