Extracted

• • Target

    601a35f8bb35dbfb4558b922defa83a9d9106d6e8788cb0e4f82d2bbfb839dd5

  • Size

    2.3MB

  • MD5

    e2e47c2c2dedb3a179251822fbd30412

  • SHA1

    cd3be3dfe3eeacd6ed572c6dc4f88250bc699a72

  • SHA256

    601a35f8bb35dbfb4558b922defa83a9d9106d6e8788cb0e4f82d2bbfb839dd5

  • SHA512

    9ad98c33c843f02a1e59c446b3652da6820da1c7617ab692dbf0594fd25252eb0f327451ac7a4349292926df9dec50374688130b499d27e5e8dd46de4d239b18

  Score

  10^/10

  alienbotbankerevasioninfostealertrojan

  • Alienbot

    Alienbot is a fork of Cerberus banker first seen in January 2020.

    bankertrojaninfostealeralienbot

  • Makes use of the framework's Accessibility service.

  • Acquires the wake lock.

  • Loads dropped Dex/Jar

    Runs executable file dropped to the device during analysis.

  • Removes a system notification.

    evasion
  behavioral1behavioral2behavioral3