alienbot | 4d4af1605589db8a08d8e43f94c51768be4d60b65c14d2fb2733be8369a42397 | Triage

Sharing

General

Target

4d4af1605589db8a08d8e43f94c51768be4d60b65c14d2fb2733be8369a42397
Size

305KB
Sample

220520-hsamrshhbk
MD5

74f7f8544d3792e67ba6d8aee9a902e1
SHA1

a8441e8e060e328cdcc114d087fa1570d4dd6390
SHA256

4d4af1605589db8a08d8e43f94c51768be4d60b65c14d2fb2733be8369a42397
SHA512

63387d04b0bf51cfe30816732ce00153d5b6a7e3425d31391b9bf039095b2aaf992c181082cba67b6b3d1ee0f4e4a1192aa50628dd35a2cccd13e054101f9eb9

Score

10^/10

alienbot android banker infostealer trojan

Malware Config

Extracted

Family

alienbot

C2

http://olisparadis.xyz

Targets

- Target
  
  4d4af1605589db8a08d8e43f94c51768be4d60b65c14d2fb2733be8369a42397
- Size
  
  305KB
- MD5
  
  74f7f8544d3792e67ba6d8aee9a902e1
- SHA1
  
  a8441e8e060e328cdcc114d087fa1570d4dd6390
- SHA256
  
  4d4af1605589db8a08d8e43f94c51768be4d60b65c14d2fb2733be8369a42397
- SHA512
  
  63387d04b0bf51cfe30816732ce00153d5b6a7e3425d31391b9bf039095b2aaf992c181082cba67b6b3d1ee0f4e4a1192aa50628dd35a2cccd13e054101f9eb9
Score

10^/10

alienbot banker infostealer trojan
- Alienbot
  Alienbot is a fork of Cerberus banker first seen in January 2020.
  banker trojan infostealer alienbot
- Makes use of the framework's Accessibility service.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

alienbotbankerinfostealertrojan

behavioral2

alienbotbankerinfostealertrojan

behavioral3

alienbotbankerinfostealertrojan