d7008a7c9191c544c9a48765e842c68e6d07cb3c6835d4dd6c13f910ab85889c

General
Target

d7008a7c9191c544c9a48765e842c68e6d07cb3c6835d4dd6c13f910ab85889c

Size

3MB

Sample

220521-xc8l7abea5

Score
10 /10
MD5

345e455d81a7030b61ba40633b19d7c7

SHA1

f405af1c0af5489651a390270d6fc6f54cc2f88f

SHA256

d7008a7c9191c544c9a48765e842c68e6d07cb3c6835d4dd6c13f910ab85889c

SHA512

e30b071ed532e9e095b7eedc767c0d8c76e6f337ccaa57621d40f13822bf9fb0efccd5d715f5355a5e47435f0b380bbb19fb8dd3afb7733bc7936fcec5353de9

Malware Config
Targets
Target

d7008a7c9191c544c9a48765e842c68e6d07cb3c6835d4dd6c13f910ab85889c

MD5

345e455d81a7030b61ba40633b19d7c7

Filesize

3MB

Score
10/10
SHA1

f405af1c0af5489651a390270d6fc6f54cc2f88f

SHA256

d7008a7c9191c544c9a48765e842c68e6d07cb3c6835d4dd6c13f910ab85889c

SHA512

e30b071ed532e9e095b7eedc767c0d8c76e6f337ccaa57621d40f13822bf9fb0efccd5d715f5355a5e47435f0b380bbb19fb8dd3afb7733bc7936fcec5353de9

Tags

Signatures

  • Anubis banker

    Description

    Android banker that uses overlays.

    Tags

  • Makes use of the framework's Accessibility service.

  • Acquires the wake lock.

  • Loads dropped Dex/Jar

    Description

    Runs executable file dropped to the device during analysis.

  • Reads information about phone network operator.

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks