Overview

overview

10

Static

static

7

07b7d933b0...78.apk

android_x86

10

07b7d933b0...78.apk

android_x64

10

07b7d933b0...78.apk

android_x64

10

Analysis

  • max time kernel
    2848202s
  • max time network
    160s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220310-en
  • submitted
    09/05/2022, 16:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    07b7d933b0581bc77e6660c119ae9c64ac4585e5f84cd591bf9ec17bd556ac78.apk

  • Size

    990KB

  • MD5

    6fb8f86facfd8c471261e9fd1a7c613a

  • SHA1

    7aca181d99022dbe3bf15c0e90404d0d30a0e9b2

  • SHA256

    07b7d933b0581bc77e6660c119ae9c64ac4585e5f84cd591bf9ec17bd556ac78

  • SHA512

    fde7be9cbcdd1d99072bea1bfc2a8d3c144eb89f4e19880dce3a4917856db52c4f2b160f19ec91f031c715243d9fb7225eb6a1a1928566f9c61c322071010d9b

Score
10/10
alienbotbankerinfostealertrojan

Malware Config

Extracted

Family

alienbot

C2

http://bugunsensensensin.digital

Signatures

  • Alienbot

    Alienbot is a fork of Cerberus banker first seen in January 2020.

    bankertrojaninfostealeralienbot
  • Makes use of the framework's Accessibility service. 2 IoCs
  • Acquires the wake lock. 1 IoCs
  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • com.orange.target
    1⤵
    • Makes use of the framework's Accessibility service.
    • Acquires the wake lock.
    • Loads dropped Dex/Jar
    PID:6917
    • getprop ro.miui.ui.version.name
      2⤵
        PID:7048
      • getprop ro.miui.ui.version.name
        2⤵
          PID:7170
        • getprop ro.miui.ui.version.name
          2⤵
            PID:7220
          • getprop ro.miui.ui.version.name
            2⤵
              PID:7273
            • getprop ro.miui.ui.version.name
              2⤵
                PID:7318
              • getprop ro.miui.ui.version.name
                2⤵
                  PID:7352
                • getprop ro.miui.ui.version.name
                  2⤵
                    PID:7385

                Network

                MITRE ATT&CK Matrix

                Replay Monitor

                Loading Replay Monitor...

                Downloads

                • /data/user/0/com.orange.target/app_DynamicOptDex/btM.json
                  Filesize

                  238KB

                  MD5

                  d920fffc7faf74371684dc90e72e8506

                  SHA1

                  7e5aadd36658abc568230e35132970d3f1b664b8

                  SHA256

                  ff4001d2ef21cac148360c855849bd9c3d77ff63b5bcebcdee7753c10ef972f1

                  SHA512

                  59e9fc2b8b0a6149e28e01c7832ea5392fc8b1046dd60a658565b0a7bd8908bfc0d6cca845d50012bb2aaee00368d88c241d84e40cd795ba6fab19c380ec200f

                  Download Submit

                • /data/user/0/com.orange.target/app_DynamicOptDex/btM.json
                  Filesize

                  483KB

                  MD5

                  721a56f18bf13ebf88de4c14e6a9921a

                  SHA1

                  73462a2cf8e0f3c515ff8d15247df794663ca8db

                  SHA256

                  bbcacd9229771551a6bcfa64d32a7b1418c301ad27c72cd92a2d5f5f378a132a

                  SHA512

                  26d027e8ce67de67927fa66dccd39aab6ad589d01cdcd3c7efddab47cd9cce54b621a33a3579d2cbc5536e09564aa33f71d89145f3192e414ade0e65ff391342

                  Download Submit