Overview

overview

10

Static

static

7

559fc04862...b2.apk

android_x86

10

559fc04862...b2.apk

android_x64

10

559fc04862...b2.apk

android_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    559fc04862c2cceac7adeb41328971978dd9b34a69f77bc1f2a7b56577e58bb2

  • Size

    2.0MB

  • Sample

    220521-pjtgvafdf7

  • MD5

    3b8ae394a9cca08c46e8b5acc6586a00

  • SHA1

    e7aa1d821937d722574432410fb235fccba22965

  • SHA256

    559fc04862c2cceac7adeb41328971978dd9b34a69f77bc1f2a7b56577e58bb2

  • SHA512

    1a5f632cab2283e3d076cb882c25ae37c004e95e8ec81dd159f20ea872968d273dd95378ad823aa457f8a58f626eaed691c92a2c216e8f804f64cfe5d7491fd2

Score
10/10
alienbotandroidbankerinfostealertrojan

Malware Config

Extracted

Family

alienbot

C2

http://scenteadid.xyz

Targets

    • Target

      559fc04862c2cceac7adeb41328971978dd9b34a69f77bc1f2a7b56577e58bb2

    • Size

      2.0MB

    • MD5

      3b8ae394a9cca08c46e8b5acc6586a00

    • SHA1

      e7aa1d821937d722574432410fb235fccba22965

    • SHA256

      559fc04862c2cceac7adeb41328971978dd9b34a69f77bc1f2a7b56577e58bb2

    • SHA512

      1a5f632cab2283e3d076cb882c25ae37c004e95e8ec81dd159f20ea872968d273dd95378ad823aa457f8a58f626eaed691c92a2c216e8f804f64cfe5d7491fd2

    Score
    10/10
    alienbotbankerinfostealertrojan

    • Alienbot

      Alienbot is a fork of Cerberus banker first seen in January 2020.

      bankertrojaninfostealeralienbot

    • Makes use of the framework's Accessibility service.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks