anubis | c2b018b45bbef87b25e9ba0c362127ce1c7a5f0431626774df03283a7c349e9f | Triage

Submit
Reports

Overview

overview

Static

static

C2B018B45B...9F.apk

android_x86

C2B018B45B...9F.apk

android_x64

C2B018B45B...9F.apk

android_x64

Sharing

General

Target

C2B018B45BBEF87B25E9BA0C362127CE1C7A5F0431626774DF03283A7C349E9F.apk
Size

309KB
Sample

220603-gbcv5aaaa5
MD5

05380a38f3a071a898f7718b3eb3b349
SHA1

9737abc2e4f140797fec3d09162bf7e7b3832915
SHA256

c2b018b45bbef87b25e9ba0c362127ce1c7a5f0431626774df03283a7c349e9f
SHA512

0ea414bd9e865867b4407eacc21e09ebcc5c292d903ca45a3f5d21741b01aa4c51f10b7fb465c22453d20e08d1ac3ae02c8d96388ec2d987f702d3feb54d9396

Score

10^/10

anubis android banker evasion infostealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

C2B018B45BBEF87B25E9BA0C362127CE1C7A5F0431626774DF03283A7C349E9F.apk

Resource

android-x86-arm-20220310-en

anubis banker evasion infostealer trojan

android_x86

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

C2B018B45BBEF87B25E9BA0C362127CE1C7A5F0431626774DF03283A7C349E9F.apk

Resource

android-x64-20220310-en

anubis banker evasion infostealer trojan

android_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

C2B018B45BBEF87B25E9BA0C362127CE1C7A5F0431626774DF03283A7C349E9F.apk

Resource

android-x64-arm64-20220310-en

anubis banker evasion infostealer trojan

android_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

anubis

C2

https://rentcarsretvslartsder.xyz

Targets

- Target
  
  C2B018B45BBEF87B25E9BA0C362127CE1C7A5F0431626774DF03283A7C349E9F.apk
- Size
  
  309KB
- MD5
  
  05380a38f3a071a898f7718b3eb3b349
- SHA1
  
  9737abc2e4f140797fec3d09162bf7e7b3832915
- SHA256
  
  c2b018b45bbef87b25e9ba0c362127ce1c7a5f0431626774df03283a7c349e9f
- SHA512
  
  0ea414bd9e865867b4407eacc21e09ebcc5c292d903ca45a3f5d21741b01aa4c51f10b7fb465c22453d20e08d1ac3ae02c8d96388ec2d987f702d3feb54d9396
Score

10^/10

anubis banker evasion infostealer trojan
- Anubis banker
  Android banker that uses overlays.
  banker trojan infostealer anubis
- Makes use of the framework's Accessibility service.
- Acquires the wake lock.
- Reads information about phone network operator.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

anubisbankerevasioninfostealertrojan

behavioral2

anubisbankerevasioninfostealertrojan

behavioral3

anubisbankerevasioninfostealertrojan

© 2018-2024

Terms | Privacy