anubis | 32b556f98d0d2bc0f14aab12585edb263296dabca5d5a1f5752031b0412338df | Triage

Submit
Reports

Overview

overview

Static

static

7

32b556f98d...df.apk

android_x86

8

32b556f98d...df.apk

android_x64

32b556f98d...df.apk

android_x64

Sharing

General

Target

32b556f98d0d2bc0f14aab12585edb263296dabca5d5a1f5752031b0412338df
Size

3.2MB
Sample

220521-nld99shaam
MD5

a5b27f03e3a6caac2a2b9b95644a12c3
SHA1

2a71db680bbc3201d9b6fe010d46a51e4486e80a
SHA256

32b556f98d0d2bc0f14aab12585edb263296dabca5d5a1f5752031b0412338df
SHA512

d87bd13489fb4961c8ba41a053665f5abfd5434d149a5b60bbcf101f4469b14e13d7351ebc36fe0545d549a633e223124c47c3f878b02c97c29900bbb6e984e3

Score

10^/10

anubis android banker evasion infostealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

32b556f98d0d2bc0f14aab12585edb263296dabca5d5a1f5752031b0412338df.apk

Resource

android-x86-arm-20220310-en

android_x86

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

32b556f98d0d2bc0f14aab12585edb263296dabca5d5a1f5752031b0412338df.apk

Resource

android-x64-20220310-en

anubis banker evasion infostealer trojan

android_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

32b556f98d0d2bc0f14aab12585edb263296dabca5d5a1f5752031b0412338df.apk

Resource

android-x64-arm64-20220310-en

anubis banker evasion infostealer trojan

android_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  32b556f98d0d2bc0f14aab12585edb263296dabca5d5a1f5752031b0412338df
- Size
  
  3.2MB
- MD5
  
  a5b27f03e3a6caac2a2b9b95644a12c3
- SHA1
  
  2a71db680bbc3201d9b6fe010d46a51e4486e80a
- SHA256
  
  32b556f98d0d2bc0f14aab12585edb263296dabca5d5a1f5752031b0412338df
- SHA512
  
  d87bd13489fb4961c8ba41a053665f5abfd5434d149a5b60bbcf101f4469b14e13d7351ebc36fe0545d549a633e223124c47c3f878b02c97c29900bbb6e984e3
Score

10^/10

anubis banker evasion infostealer trojan
- Anubis banker
  Android banker that uses overlays.
  banker trojan infostealer anubis
- Makes use of the framework's Accessibility service.
- Acquires the wake lock.
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Reads information about phone network operator.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

anubisbankerevasioninfostealertrojan

behavioral3

anubisbankerevasioninfostealertrojan

© 2018-2024

Terms | Privacy