Overview

overview

10

Static

static

7

e9c79c59ab...58.apk

android_x86

10

e9c79c59ab...58.apk

android_x64

10

e9c79c59ab...58.apk

android_x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e9c79c59abb79ce3739bfd5d7f3d6be487ec67971caaeebbc238d0e2ed0f2058

  • Size

    1.9MB

  • Sample

    220521-d9rv6ahae8

  • MD5

    ad7cff2b095c216ad4a594dc83830ba2

  • SHA1

    aa2fa467daa63fbc626dc4274b6a20e3628c545a

  • SHA256

    e9c79c59abb79ce3739bfd5d7f3d6be487ec67971caaeebbc238d0e2ed0f2058

  • SHA512

    6c2f2bad1bb2bf84087130c6feaddbe96fe899fafcf71add924e79f5cffccd03d51357c75026e6e248788aba30a7e8e2d1281c1b856d1729df4a51521dbb0415

Score
10/10
alienbotandroidbankerevasioninfostealertrojan

Malware Config

Extracted

Family

alienbot

C2

http://installerflas7865432.xyz

Targets

    • Target

      e9c79c59abb79ce3739bfd5d7f3d6be487ec67971caaeebbc238d0e2ed0f2058

    • Size

      1.9MB

    • MD5

      ad7cff2b095c216ad4a594dc83830ba2

    • SHA1

      aa2fa467daa63fbc626dc4274b6a20e3628c545a

    • SHA256

      e9c79c59abb79ce3739bfd5d7f3d6be487ec67971caaeebbc238d0e2ed0f2058

    • SHA512

      6c2f2bad1bb2bf84087130c6feaddbe96fe899fafcf71add924e79f5cffccd03d51357c75026e6e248788aba30a7e8e2d1281c1b856d1729df4a51521dbb0415

    Score
    10/10
    alienbotbankerevasioninfostealertrojan

    • Alienbot

      Alienbot is a fork of Cerberus banker first seen in January 2020.

      bankertrojaninfostealeralienbot

    • Makes use of the framework's Accessibility service.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Removes a system notification.

      evasion
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks