Overview

overview

10

Static

static

7

b47881184f...4a.apk

android_x86

10

b47881184f...4a.apk

android_x64

10

b47881184f...4a.apk

android_x64

10

Analysis

  • max time kernel
    2744535s
  • max time network
    168s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220310-en
  • submitted
    08/05/2022, 08:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b47881184f891d42d56e4984c5558aa723aab4964e2a957666ec3c228615264a.apk

  • Size

    1.2MB

  • MD5

    356be1cca1949ec98bfe251504f70231

  • SHA1

    dd93307b1c11f1cbd94506e675d26273ce95e2fe

  • SHA256

    b47881184f891d42d56e4984c5558aa723aab4964e2a957666ec3c228615264a

  • SHA512

    45ff5c22ad9905541769b0873b33c104dabe9399fbeff4c9eda6e46f08bbdd7e0807dfb3656bd311fc8698dc460daa3566aedcf762b52d016192ad0dc91c1aab

Score
10/10
alienbotbankerinfostealertrojan

Malware Config

Extracted

Family

alienbot

C2

http://odry.online

Signatures

  • Alienbot

    Alienbot is a fork of Cerberus banker first seen in January 2020.

    bankertrojaninfostealeralienbot
  • Makes use of the framework's Accessibility service. 2 IoCs
  • Acquires the wake lock. 1 IoCs
  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • ayrblhyrsbpjh.dihkkeljwphqxkruoggppeu.lsdizzl
    1⤵
    • Makes use of the framework's Accessibility service.
    • Acquires the wake lock.
    • Loads dropped Dex/Jar
    PID:5761
    • getprop ro.miui.ui.version.name
      2⤵
        PID:6370
      • getprop ro.miui.ui.version.name
        2⤵
          PID:6759
        • getprop ro.miui.ui.version.name
          2⤵
            PID:6798
          • getprop ro.miui.ui.version.name
            2⤵
              PID:6920
            • getprop ro.miui.ui.version.name
              2⤵
                PID:6961
              • getprop ro.miui.ui.version.name
                2⤵
                  PID:6999
                • getprop ro.miui.ui.version.name
                  2⤵
                    PID:7033

                Network

                MITRE ATT&CK Matrix

                Replay Monitor

                Loading Replay Monitor...

                Downloads

                • /data/user/0/ayrblhyrsbpjh.dihkkeljwphqxkruoggppeu.lsdizzl/app_DynamicOptDex/opd.json
                  Filesize

                  442KB

                  MD5

                  f7f389da10f85a87025bb29ec37ce4ea

                  SHA1

                  b02698edeea89eddf2091324facfd2256352f4d1

                  SHA256

                  1057eef96e91c770ca3d474a558adf927db479b06bfba94f8814ab6fa3f1d448

                  SHA512

                  58080f34e5235d413aa0640d512d8f8dbfd5be9b85f491dcc873e142b44374e8dea42b64d49efaa9c72dd695e86378a825a6e90e5b1e1339f643488c7aedfe82

                  Download Submit

                • /data/user/0/ayrblhyrsbpjh.dihkkeljwphqxkruoggppeu.lsdizzl/app_DynamicOptDex/opd.json
                  Filesize

                  442KB

                  MD5

                  6369634269270811acadc92e22992b34

                  SHA1

                  132e3f75e6b3ccad6635c5d7861570d8dcb3009b

                  SHA256

                  9e41b76bc991997a21fc1f3c8697dffcc85eac48161c85e233132d2bc6103e22

                  SHA512

                  ae39b0623827d7362056677dea378208cc90c7335b8609d16598b038dadc8fa01004616dd80eae1707e26be437e70aa6e7556ea5644d1ccd27cd1f834631f55c

                  Download Submit

                • /data/user/0/ayrblhyrsbpjh.dihkkeljwphqxkruoggppeu.lsdizzl/app_DynamicOptDex/opd.json
                  Filesize

                  442KB

                  MD5

                  6369634269270811acadc92e22992b34

                  SHA1

                  132e3f75e6b3ccad6635c5d7861570d8dcb3009b

                  SHA256

                  9e41b76bc991997a21fc1f3c8697dffcc85eac48161c85e233132d2bc6103e22

                  SHA512

                  ae39b0623827d7362056677dea378208cc90c7335b8609d16598b038dadc8fa01004616dd80eae1707e26be437e70aa6e7556ea5644d1ccd27cd1f834631f55c

                  Download Submit