anubis | 25e54e72b8be16a0523f2d8217059628126c0098d851e26dc8333877e231af9a | Triage

Submit
Reports

Overview

overview

Static

static

7

25e54e72b8...9a.apk

android_x86

25e54e72b8...9a.apk

android_x64

25e54e72b8...9a.apk

android_x64

1

Sharing

General

Target

25e54e72b8be16a0523f2d8217059628126c0098d851e26dc8333877e231af9a
Size

3.2MB
Sample

220521-nlhyfsdha4
MD5

9a81fcb874c305a0a2cfc9410d0d41ee
SHA1

d178c75d55670f58cdb4cd9c1e14dc5c280756a9
SHA256

25e54e72b8be16a0523f2d8217059628126c0098d851e26dc8333877e231af9a
SHA512

0cf3e6780cb02ee5ae29a97907e69f62e2cdc12473ae7511ee25a47f8e56c7b4b94d00a064a60766376cb5de24c60853666a970844a2380c649d24beaa14a8f7

Score

10^/10

anubis android banker evasion infostealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

25e54e72b8be16a0523f2d8217059628126c0098d851e26dc8333877e231af9a.apk

Resource

android-x86-arm-20220310-en

anubis banker evasion infostealer trojan

android_x86

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

25e54e72b8be16a0523f2d8217059628126c0098d851e26dc8333877e231af9a.apk

Resource

android-x64-20220310-en

anubis banker evasion infostealer trojan

android_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

25e54e72b8be16a0523f2d8217059628126c0098d851e26dc8333877e231af9a.apk

Resource

android-x64-arm64-20220310-en

android_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  25e54e72b8be16a0523f2d8217059628126c0098d851e26dc8333877e231af9a
- Size
  
  3.2MB
- MD5
  
  9a81fcb874c305a0a2cfc9410d0d41ee
- SHA1
  
  d178c75d55670f58cdb4cd9c1e14dc5c280756a9
- SHA256
  
  25e54e72b8be16a0523f2d8217059628126c0098d851e26dc8333877e231af9a
- SHA512
  
  0cf3e6780cb02ee5ae29a97907e69f62e2cdc12473ae7511ee25a47f8e56c7b4b94d00a064a60766376cb5de24c60853666a970844a2380c649d24beaa14a8f7
Score

10^/10

anubis banker evasion infostealer trojan
- Anubis banker
  Android banker that uses overlays.
  banker trojan infostealer anubis
- Makes use of the framework's Accessibility service.
- Acquires the wake lock.
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Reads information about phone network operator.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

anubisbankerevasioninfostealertrojan

behavioral2

anubisbankerevasioninfostealertrojan

behavioral3

© 2018-2024

Terms | Privacy