Overview

overview

10

Static

static

7

464e1ba729...f7.apk

android_x86

10

464e1ba729...f7.apk

android_x64

1

464e1ba729...f7.apk

android_x64

10

Analysis

  • max time kernel
    2558445s
  • max time network
    38s
  • platform
    android_x86
  • resource
    android-x86-arm-20220621-en
  • submitted
    25-06-2022 01:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    464e1ba729a7aa989d4fa6c251582460ee434165cd8ca1d48da8f364cf396df7.apk

  • Size

    308KB

  • MD5

    c828c6590dba54cd63f593da8e09bad0

  • SHA1

    147969478d998bde6764cda169dfa3c98152e01a

  • SHA256

    464e1ba729a7aa989d4fa6c251582460ee434165cd8ca1d48da8f364cf396df7

  • SHA512

    3920cede65169d486e34874dc8ef046334751920c164d3fe7187e657649cb688c9fb52e37930f97297bd289c8f5e308725afd19fc4f6cc902382508a79eb0737

Score
10/10
anubisbankerevasioninfostealertrojan

Malware Config

Signatures

  • Anubis banker

    Android banker that uses overlays.

    bankertrojaninfostealeranubis
  • Makes use of the framework's Accessibility service. 2 IoCs
  • Acquires the wake lock. 1 IoCs
  • Requests enabling of the accessibility settings. 1 IoCs
  • Requests disabling of battery optimizations (often used to enable hiding in the background). 1 IoCs
    evasion
  • Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
    evasion

Processes

  • anubis.bot.myapplication
    1⤵
    • Makes use of the framework's Accessibility service.
    • Acquires the wake lock.
    • Requests enabling of the accessibility settings.
    • Requests disabling of battery optimizations (often used to enable hiding in the background).
    • Listens for changes in the sensor environment (might be used to detect emulation).
    PID:4549

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads