Overview

overview

10

Static

static

7

7bb2cbfb8a...c2.apk

android_x86

10

7bb2cbfb8a...c2.apk

android_x64

10

7bb2cbfb8a...c2.apk

android_x64

10

Analysis

  • max time kernel
    3843629s
  • max time network
    166s
  • platform
    android_x64
  • resource
    android-x64-20220310-en
  • submitted
    21/05/2022, 03:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7bb2cbfb8a3487329d20ffec840ed7a10146c24fb7a04ff4dcd72160a3b57dc2.apk

  • Size

    1.7MB

  • MD5

    1b9c8db2545db6103bc884165220d8ed

  • SHA1

    7ccabd03e29808fc11a282c4c438a54733d876fb

  • SHA256

    7bb2cbfb8a3487329d20ffec840ed7a10146c24fb7a04ff4dcd72160a3b57dc2

  • SHA512

    e1ca640270c3c509c9444a693a01a0c4c0fb313c51f9cec0119a8cc795cccca0a783398fbcf822f87eb02fcdc618edc2e4eb2cd25e0bce13f37262fb3fdd8fc0

Score
10/10
alienbotbankerinfostealertrojan

Malware Config

Extracted

Family

alienbot

C2

http://installerflas678352.xyz

Signatures

  • Alienbot

    Alienbot is a fork of Cerberus banker first seen in January 2020.

    bankertrojaninfostealeralienbot
  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • prbpgcurgwyhg.phsdktxzqaabwzrtxuhgwr.saayapzfdw
    1⤵
    • Loads dropped Dex/Jar
    PID:6024
    • getprop ro.miui.ui.version.name
      2⤵
        PID:6147
      • getprop ro.miui.ui.version.name
        2⤵
          PID:6369
        • getprop ro.miui.ui.version.name
          2⤵
            PID:6832
          • getprop ro.miui.ui.version.name
            2⤵
              PID:7339

          Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/user/0/prbpgcurgwyhg.phsdktxzqaabwzrtxuhgwr.saayapzfdw/app_DynamicOptDex/agOfl.json
            Filesize

            673KB

            MD5

            d95357d34f66dc61abed05a3fbad4e8e

            SHA1

            abdb95f5ab45df0f317608fb67ddede9d8ee0b79

            SHA256

            3546c3d4156c6cd78c08cb21aefa94c4fcaab3146fbba65360e706bf0b8993ba

            SHA512

            5b2e615cdb44da5ef934d5caf7c733546f634919893d2f7d5d8ebecc00487903e136626386e069047f11957692fa55d9d4c6af5e23999a410767e899833a3e39

            Download Submit

          • /data/user/0/prbpgcurgwyhg.phsdktxzqaabwzrtxuhgwr.saayapzfdw/app_DynamicOptDex/agOfl.json
            Filesize

            673KB

            MD5

            ab4274a23eba3e9e35b757b43f8f5ffa

            SHA1

            6b3ac12f66b5773679306b5642a4da90c24569a1

            SHA256

            2e11274aa076a6e9f55be3a483060fff3ec83e71d13ded233de323411304a862

            SHA512

            c4f7c3ddfedcf68582d5def4d71610386c00199df2182bc88d514b04115042c835676e6005e29377a3088ca315274def9b164940cdf76ac9032c16e73b618d6c

            Download Submit

          • /data/user/0/prbpgcurgwyhg.phsdktxzqaabwzrtxuhgwr.saayapzfdw/app_DynamicOptDex/agOfl.json
            Filesize

            673KB

            MD5

            ab4274a23eba3e9e35b757b43f8f5ffa

            SHA1

            6b3ac12f66b5773679306b5642a4da90c24569a1

            SHA256

            2e11274aa076a6e9f55be3a483060fff3ec83e71d13ded233de323411304a862

            SHA512

            c4f7c3ddfedcf68582d5def4d71610386c00199df2182bc88d514b04115042c835676e6005e29377a3088ca315274def9b164940cdf76ac9032c16e73b618d6c

            Download Submit