Overview

overview

10

Static

static

7

1e1489dead...aa.apk

android_x86

8

1e1489dead...aa.apk

android_x64

10

1e1489dead...aa.apk

android_x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1e1489deadd613d8a0ef3477d4a113b6680f91f0023f5daf39400900144743aa

  • Size

    3.2MB

  • Sample

    220521-nllz4shaap

  • MD5

    b40df30630f5c633fe87ee5a185be1d1

  • SHA1

    9e3f94ebec0cb4dafe8c97dfa45f41abcfde55a2

  • SHA256

    1e1489deadd613d8a0ef3477d4a113b6680f91f0023f5daf39400900144743aa

  • SHA512

    3faa34c838ec964e0251d62fd42fb4dd97f9c1790d97a3b0340c652abbbd4ba9b0ff7d40c877f06a33bb96b98e62f0d8afdf75d49dc5f6e857640ec9124162c7

Score
10/10
anubisandroidbankerevasioninfostealertrojan

Malware Config

Targets

    • Target

      1e1489deadd613d8a0ef3477d4a113b6680f91f0023f5daf39400900144743aa

    • Size

      3.2MB

    • MD5

      b40df30630f5c633fe87ee5a185be1d1

    • SHA1

      9e3f94ebec0cb4dafe8c97dfa45f41abcfde55a2

    • SHA256

      1e1489deadd613d8a0ef3477d4a113b6680f91f0023f5daf39400900144743aa

    • SHA512

      3faa34c838ec964e0251d62fd42fb4dd97f9c1790d97a3b0340c652abbbd4ba9b0ff7d40c877f06a33bb96b98e62f0d8afdf75d49dc5f6e857640ec9124162c7

    Score
    10/10
    anubisbankerevasioninfostealertrojan

    • Anubis banker

      Android banker that uses overlays.

      bankertrojaninfostealeranubis

    • Makes use of the framework's Accessibility service.

    • Acquires the wake lock.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Reads information about phone network operator.

    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks