Analysis
-
max time kernel
672963s -
max time network
166s -
platform
android_x64 -
resource
android-x64-20220310-en -
submitted
03-06-2022 05:35
General
-
Target
ce448fb2d1575f3a74ee59c611f6ec06.apk
-
Size
1.7MB
-
MD5
ce448fb2d1575f3a74ee59c611f6ec06
-
SHA1
660ff941653eb59c2f21da93c36bffd90ec3926e
-
SHA256
fcc8e879421efa4a87c18771ad6a5e20960dbdf80222f34024d110922a9ae63a
-
SHA512
dff7e05e60611a5c62cdaab367cd7a99545541b75a4e21b3aa00c70369f1d9c62a84be1a0d3cf3bb29e2dc49dbe3e265e8cd3e4c21a8f560ca94e3bce4bbe264
Malware Config
Extracted
anubis
http://3n0rm0us.cc/
Signatures
-
Anubis banker
Android banker that uses overlays.
-
Loads dropped Dex/Jar 2 IoCs
Runs executable file dropped to the device during analysis.
-
Reads information about phone network operator.
-
Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
Processes
-
fyanuggduafxahhs.pcwqxwlmjrcxlufxieog.kaglywewk1⤵
- Loads dropped Dex/Jar
- Listens for changes in the sensor environment (might be used to detect emulation).
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
966KB
MD5c9f284fea999fa6be11e6775862105d5
SHA14599bfa5d667c26b54b76587b828e162505444f4
SHA25618979d0a8b4e025bedb709ad8dc0d8639142da8a6eb3b23765f99d93edb01759
SHA5123f5542ac2bd41b36953db413964f2460ab21304f82600461f2290446cba8f5026f17b240c26ad0bc8aad5923f5f2a91d824f743beeeb89588096e61a0ae0914f
-
Filesize
966KB
MD59253a43fc67c38c81b5c91ccf8d208bb
SHA1759ac6f8d896d5d31af418b939455fcf54047166
SHA256e2020ee25bc82c2667acc26ad26f0a314519b5ae283cc1292dae2c2ff0501617
SHA512345c06ced94f1435790248c847d21e4a9d344464d65558a579e083f400772d379f914cc0007a56c3f9796b607d4dd47a5ef9fe3891bed4b52b924aa0a058f903
-
Filesize
966KB
MD59253a43fc67c38c81b5c91ccf8d208bb
SHA1759ac6f8d896d5d31af418b939455fcf54047166
SHA256e2020ee25bc82c2667acc26ad26f0a314519b5ae283cc1292dae2c2ff0501617
SHA512345c06ced94f1435790248c847d21e4a9d344464d65558a579e083f400772d379f914cc0007a56c3f9796b607d4dd47a5ef9fe3891bed4b52b924aa0a058f903