Overview

overview

10

Static

static

7

f8d950f438...b0.apk

android_x86

10

f8d950f438...b0.apk

android_x64

10

f8d950f438...b0.apk

android_x64

10

Analysis

  • max time kernel
    3611636s
  • max time network
    159s
  • platform
    android_x86
  • resource
    android-x86-arm
  • submitted
    08-02-2022 00:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f8d950f43835eab4b300a075f8c04ed8232d4f035bf6dce99445054ed97e89b0.apk

  • Size

    2.7MB

  • MD5

    aa2abc87e71ec70eee4fc7550124754d

  • SHA1

    3ce31150929c6e0dbddf32607c58589bbd68095d

  • SHA256

    f8d950f43835eab4b300a075f8c04ed8232d4f035bf6dce99445054ed97e89b0

  • SHA512

    dfc0e12141a233ea9149cae3c5907d861a14d30812cedda171ede5fbc410fa0df638463cca8ef5d7aae92852f2be191828f39a22edf8b96e7d0a9b8d8d8b05ef

Score
10/10
alienbotbankerinfostealertrojan

Malware Config

Extracted

Family

alienbot

C2

http://alunss.ml

Signatures

  • Alienbot

    Alienbot is a fork of Cerberus banker first seen in January 2020.

    bankertrojaninfostealeralienbot
  • Makes use of the framework's Accessibility service. 1 IoCs
  • Loads dropped Dex/Jar 3 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • alcohol.patch.crumble
    1⤵
    • Makes use of the framework's Accessibility service.
    • Loads dropped Dex/Jar
    PID:5023
    • alcohol.patch.crumble
      2⤵
        PID:5156
      • /system/bin/dex2oat
        2⤵
        • Loads dropped Dex/Jar
        PID:5156

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/alcohol.patch.crumble/app_DynamicOptDex/rBXPpKk.json
      MD5

      a475f12e4ff5e29dbec730ad33c722f6

      SHA1

      62dafb6d54d9a2fde96fa44b4d1a6987f9819cc4

      SHA256

      1bc4482be2f03f3a7a13c7eccb43161286ad1c7f18097a0fc5aafd148250a3ff

      SHA512

      ed1b1b711a2e0d05bf32054493af90465cd7e76d99610c291f9f0c504353798992b3b6600d5e04e7bf676bbfb7c947ce5fe24e9dea11c5c5f9bb69c4dc7a85d9

      Download Submit

    • /data/user/0/alcohol.patch.crumble/app_DynamicOptDex/rBXPpKk.json
      MD5

      72b45058549add781872486cef9957d2

      SHA1

      2282c817561fcf4917b89e6efaffd5d90c649645

      SHA256

      890bc834c6a0e8c99d816d76a34b5edeb07fdb75c06f31e05549894aa9b13826

      SHA512

      5b515c8c2c7872e6577ac94d5afc785fcb8ad46aaed10b5a378656233a1ab16483f4e8e2509b6512c1b2995acaf32c4f2c3ad4a73416d97b558c991c55c533ee

      Download Submit

    • /data/user/0/alcohol.patch.crumble/app_DynamicOptDex/rBXPpKk.json
      MD5

      a475f12e4ff5e29dbec730ad33c722f6

      SHA1

      62dafb6d54d9a2fde96fa44b4d1a6987f9819cc4

      SHA256

      1bc4482be2f03f3a7a13c7eccb43161286ad1c7f18097a0fc5aafd148250a3ff

      SHA512

      ed1b1b711a2e0d05bf32054493af90465cd7e76d99610c291f9f0c504353798992b3b6600d5e04e7bf676bbfb7c947ce5fe24e9dea11c5c5f9bb69c4dc7a85d9

      Download Submit