General

  • Target

    d200a8f5cb0e3c2ee77fa377d9ae4e1cc3e22724e63a12e2f57a0e68706a9117

  • Size

    3.2MB

  • Sample

    220521-njwfrsghfj

  • MD5

    fe9ac42006387566fb526a4246cc27f2

  • SHA1

    17e808d812f98d3db0271ec6ea3c4f9d4c9f8ee8

  • SHA256

    d200a8f5cb0e3c2ee77fa377d9ae4e1cc3e22724e63a12e2f57a0e68706a9117

  • SHA512

    eb892f34545ea7053f3349b21fc663fab7711f7ec4b3255c87e1a9ab647951e8bc3a592611bb4028034c8307110e724c686c748ff9669165d91a784c0e5f37b2

Malware Config

Targets

    • Target

      d200a8f5cb0e3c2ee77fa377d9ae4e1cc3e22724e63a12e2f57a0e68706a9117

    • Size

      3.2MB

    • MD5

      fe9ac42006387566fb526a4246cc27f2

    • SHA1

      17e808d812f98d3db0271ec6ea3c4f9d4c9f8ee8

    • SHA256

      d200a8f5cb0e3c2ee77fa377d9ae4e1cc3e22724e63a12e2f57a0e68706a9117

    • SHA512

      eb892f34545ea7053f3349b21fc663fab7711f7ec4b3255c87e1a9ab647951e8bc3a592611bb4028034c8307110e724c686c748ff9669165d91a784c0e5f37b2

    • Anubis banker

      Android banker that uses overlays.

    • Makes use of the framework's Accessibility service.

    • Acquires the wake lock.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Reads information about phone network operator.

MITRE ATT&CK Matrix

Tasks